E-Postbrief is now TÜV-tested
- Certificate "Trusted Site Privacy" attests to high standard of legal conformity, data protection and security
- TÜV auditors also confirm customer and user friendliness
Antonius Sommer, Managing Director of TÜViT (left), handing over the certificate to Ralph Wiegand, a member of the Divisional Board MAIL at Deutsche Post .
The E-Postbrief has been awarded the certificate "Trusted Site Privacy" from the certifying unit of TÜV Informationstechnik GmbH (TÜViT). The certificate serves as evidence from an independent organization that Deutsche Post's E-Postbrief platform meets high standards regarding legal conformity, data protection and security. By receiving the TÜV certification mark for the E-Postbrief platform, Deutsche Post has underscored its leading position as a qualified provider of secure, easy-to-use electronic communications.
"The certificate again validates the high quality and security level of the E-Postbrief," said Ralph Wiegand, a member of the Divisional Board MAIL at Deutsche Post. "And it confirms that our product conforms with the law."
E-Postbrief successfully passed all legal and technical aspects
TÜViT is a subsidiary of the TÜV NORD Group. Its range of services includes the evaluation, examination and certification of IT processes, IT systems and IT products. The focal points of the E-Postbrief audit were components that, from the user's point of view, are needed to work with the E-Postbrief on an every-day basis, including billing and support processes. The areas that were reviewed included legal conformity, reliability of processing, user friendliness, customer friendliness, transparency, data protection, quality management and data security.
The audit's results are quite clear: the E-Postbrief successfully passed all legal and technical aspects of the audit conducted by the certification organization. In addition to the technical requirements, the platform meets all legal requirements and even exceeds them in some areas. The E-Postbrief provides customers with a very extensive range of management options regarding the handling of their personal data and, thus, a real form of self-initiated data protection.
A comprehensive security-technical review
During the audit, TÜViT subjected the E-Postbrief to a comprehensive security-technical review. The results: the system technology being used and its components meet the certification organization's high security standards. The certificate "Trusted Site Privacy" issued by TÜViT is valid until July 2013, but the product will still undergo an annual review.
Antonius Sommer, Managing Director of TÜViT, said: "The TÜViT certificate attests to the use of very high security and data-protection standards into which end consumers can put their trust. The annual reviews will ensure that this safety and data-protection level is maintained over the long term." No review was conducted of the hybrid delivery of the E-Postbrief, the Postident process, customer service and added-value services.
Information-security management system
Last year, the auditors at TÜViT examined the information-security management system that Deutsche Post uses for the E-Postbrief. As a result of the positive audit findings, the German Office for Information Security issued a certificate based on ISO 27001 in December 2010. With this document, the office certifies that the E-Postbrief meets the security requirements of the international ISO norm and passed a review of the technical aspects on the basis of fundamental IT security.