Everywhere you turn these days, people are talking about data protection and information security. The same goes for us at Leinhäuser, where these have been topics of discussion for many years now. Today, companies increasingly expect their suppliers to have data-protection certifications. Fortunately, we at Leinhäuser have good news for them: We’ve recently passed an audit according to TISAX guidelines. These guidelines aren’t just a standard that’s widely recognized in the automotive industry — it’s a standard used by many small- and medium-sized enterprises in other industries as well.
Leinhäuser has years of experience securely processing and transmitting sensitive information. As part of its collaboration with partners in the automotive industry, Leinhäuser has been applying the guidelines of the German Association of the Automotive Industry (VDA) for years now. But then in 2017, the association created a uniform standard for the entire supply chain: the TISAX label. “From the manufacturer to the supplier and service provider,” said Dr. Martin Unterberger, the chairman of the association’s working group on information security.
The association’s ISA (Information Security Assessment) is based on the international ISO/IEC 27001 standard. The VDA has commissioned the ENX Association to assign its accredited auditor to conduct the assessments. Even though TISAX (short for Trusted Information Security Assessment Exchange) is based directly on the automotive association’s guidelines as well as ISO/IEC 27001, new requirements have been formulated as well. As a result, information security has once again received special attention by us at Leinhäuser.
Our employees involved in the process provided answers to questions about how preparation and the assessment itself were carried out.