Compliance

ISO

Our data center is certified ISO 27001, 27017, 27018. For more information see details from our hosting partner.

ISO 27001 is a widely recognized and internationally accepted information security standard that specifies security management best practices and comprehensive security controls following ISO 27002 best practices guidance.

ISO 27017 is a standard that provides additional guidance and implementation advice on information security aspects specific to cloud computing.

ISO 27018 establishes commonly accepted control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with defined privacy principles for public cloud computing environments.

GDPR

As a Norwegian company we are fully compliant with GDPR. You can find our policies regarding privacy and data processing in our terms of service. For a list of our subprocessors please contact us.

The General Data Protection Regulation (EU) 2016/679 (GDPR) is a regulation in EU law on data protection and privacy in the European Union (EU) and the European Economic Area (EEA). It also addresses the transfer of personal data outside the EU and EEA areas.

SOC

Security, Availability & Confidentiality Reports. For more information see details from our hosting partner.

SOC1 Type 2 is an independent examination of the IT General controls and controls around availability, confidentiality and security of customer data processed relevant for the financial reporting of customers.

The restricted to use SOC2 Type 2 report is an independent examination of the fairness of presentation and the suitability of the design of controls relevant to security, availability and confidentiality of the customer data processed.

The general use SOC3 report is an independent examination of the fairness of presentation and the suitability of the design of controls relevant to security, availability and confidentiality of the customer data processed.

PCI DSS

MakePlans does not store any credit card details but rely on certified partners for safe transmission and storage.

PCI DSS is the global security standard for all entities that store, process, or transmit cardholder data and/or sensitive authentication data

Kom igång med tidsbokning online idag!