Learch first trusted archiver ISO 27001 certified
Information security being fundamental at Learch, the company has established an Information Security Management System (ISMS) which has been granted the ISO/IEC 27001 certification.
The ISMS covers the confidentiality, integrity and availability of all information treated by Learch, meaning the client archives as well as the other client documents (invoices, contracts, etc) or the Learch internal documents. Our ISMS was established from Summer 2010 in compliance with the reference international standard ISO/IEC 27001:2005; the initial certification audit took place satisfactorily and Learch has now obtained the certification. The ISO/IEC 27001-certified ISMS guarantees on one hand the continuous improvement of information security at Learch, and on the other hand the application of an extensive set of best practices covering all aspects of information security: human resources, hardware and software, network, documentation management. To have a look at our certification, click here.
Learch is PSF accredited
Financial institutions are increasingly outsourcing business critical activities in order to reduce costs and achieve strategic goals. However, this reliance on outsourced activities potentially raises issues about the viability of the regulated entity as well as its obligations to customers. In order to minimize the risks for financial services firms, the Committee of European Banking Supervisors (CEBS) and the Basel Committee have established a set of guidelines on outsourcing arrangements which help financial institutions to control business risks and monitor their compliance with regulatory requirements.
In 2003, the Luxembourg legislator established a regulatory framework for the implementation of the guidelines defined in the Basel II Accord. This framework, as known as the “Support PSF” statute (Financial Sector Professional), applies to Luxembourg based companies that provide operational support services to financial institutions. It aims at reducing operational and confidentiality risks for financial and insurance institutions by regulating and supervising service providers to the same extent as the banks themselves. To be accredited with the PSF Support statute, companies need to demonstrate expertise in providing support services, show financial stability and fulfill prudential and reporting requirements as defined by the statutory authority of the CSSF.
Learch has been accredited with the PSF statute of both secondary IT system and network operator and manager of customer communications.
