Report

Immediately after each assessment, you will receive a clear report from DigiTrust. After the practical assessment (second phase) and after each three-year review, we provide this report with the recommendation for certification.

The recommendation for certification has the following grades, a kind of report grade:

• Certificate/accreditation. When your information security management system meets all the requirements of ISO 27001 / NEN7510, DigiTrust can issue a certificate.

• Minor Nonconformity. This gradation means that elements were found during the audit on which corrective action is needed to comply with the standards of ISO 27001 / NEN7510. These measures will have to be taken because failure to take action could lead to a situation with relevant compromise risk. Risk to either your customers or the integrity of the management system or compliance with relevant laws and regulations. We will then determine whether an adequate root cause analysis has been performed and whether any corrective actions have been effectively implemented.

• Major Nonconformity. This means no certification can now be issued. Simply put: a failing grade. Indeed, this grade means that shortcomings have been identified with a relevant detrimental risk to your customers, to the integrity of your management system and/or to compliance with relevant laws and regulations. We will then make a follow-up appointment with you to discuss the causes and corrective actions. When sufficient measures have been taken, we can still proceed to certification.

Want to know more about information security and the ISO 27001 and/or NEN 7510 certification process? Call 088-2245600 or mail [email protected].