Skip to main content

Trust issues: Visma breaks ground with cloud quality standard

Just before the Norwegian winter holiday Chief Quality Officer Gro Nyhus of Visma IT & Communications proudly announced that the company had been awarded with the ISO/IEC 27018:2014 certificate.

Trust issues: Visma breaks ground with cloud quality standard
Trust issues: Visma breaks ground with cloud quality standard

She had then received the physical evidence of compliance with ISO’s privacy framework for cloud services providers. The certificate marks the culmination of a nine month dedicated effort by the quality team.

ISO 27018 is the leading privacy-specific international standard for the cloud. It seeks to address issues such as keeping customer information confidential and secure, and preventing personal information from being unwillingly processed for secondary purposes. It is a code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors.

EY CertifyPoint (EYCP), the audit firm performing the quality audit confirms that Visma is the first company that has been provided with an ISO 27018 certificate by EYCP in both Norway and Europe. Being in the forefront on these burning topics, brought to public attention particularly by last year’s implementation of the General Data Protection Regulation (GDPR) is vital to maintain trust in Visma as a cloud-based service provider in the years to come.

Visma IT & Communications sees this and similar certifications as a significant competitive advantage, increasing its relevance as a supplier and service provider. Sales forces throughout the Visma Group should experience the ready third-party certificates (available through sister company Admincontrol’s elegant solution) as a sales enabler, as privacy awareness make prospects and customers increasingly ask how Visma complies with the complex regulatory landscape.

Want to know more about the upside of quality? Feel free to contact the expertise:

  • Ana-Maria Antonescu, Quality Coordinator (
  • Dan Candea, Visma CSIRT/CC Manager (
  • Alexandru Cinezan, Information Security Analyst (
  • Lars Martin Ottersen, Group Data Protection Officer (
  • Hans Petter Holen, Chief Information Security Officer (
  • Gro Nyhus, Chief Quality Officer (

Most popular

  • ""

    What is an IT Security Policy?

    Every organisation—from startups to large, global corporations and nonprofits—must make sure that they have procedures to keep up with an ever-changing landscape of threats and vulnerabilities to keep its assets secure. But what is an IT Security Policy, and how do you enforce them?

  • ""

    Turning the UEFA Euro into math

    The Finnish company Weoptit, a company in Visma, has turned the UEFA Euro tournament into math and simulations. Based on a model originally built by their analysts prior to the World Cup 2006, they have played out the tournament 1,000 000 times to find out what results each team can expect from this summer’s football festival.