ISO/NEN/ISAE Certification

The Sourcing Company has received the certificate for NEN 7510:2017 & ISO/IEC 27001:2013 & ISAE 3402 I & II from testing and certification company DEKRA. This indicates that The Sourcing Company meets the highest standards in the field of information security. With the NEN certification, The Sourcing Company is able to assist companies within the healthcare sector with the implementation of the legally required NEN standard. With the ISO and ISAE certifications, The Sourcing Company ensures that policies and processes are well organized with regard to information security. As a company, we are proud of our certifications!

The renewal audit on ISO27001 and NEN7510 was carried out in April 2021 and extended for 3 years. The ISAE type II audit was conducted from September 2020 to February 2021 and was received with positive results. 

With these certificates we show that we do everything we can to protect data ”.

ISAE 3402 Type I & II

ISAE 3402 Type I

The ISAE 3402 Type I statement is a certification whereby The Sourcing Company has proven that the policy and processes with regard to information security are well organized, at a single measurement moment. 



Because the Type I certification is only a snapshot, The Sourcing Company has also obtained the Type II certification. This demonstrates that the policy and processes are well organized over a longer period of time. The auditor tests control measures several times at different times so that it can be demonstrated that these processes are properly set up. 

ISO / IEC 27001: 2013

ISO 270001 describes how you can process information security, with the aim of safeguarding the confidentiality, availability and integrity of information within an organization. Think of the protection of personal and / or company data, protection against hackers and burglary.

ISO 27001 is useful for all organizations that want to demonstrate that they use a set of measures, processes and procedures to demonstrate that they are serious about information security. These can be ICT companies (such as The Sourcing Company), but also banks, insurers, government, healthcare institutions and other companies that handle, process or store confidential information.

NEN 7510:2017

The NEN 7510 standard focuses on information security in healthcare. Guaranteeing the availability, integrity and confidentiality of patient information is given extra attention in the standard and the accompanying certificate. The NEN 7510 'Information security in healthcare' certificate has been specially developed for healthcare institutions and organizations that process or manage patient data. The Ministry of VWS requires health care institutions to ensure that information security is in order. With the aid of the NEN 7510 certification, the healthcare institution can independently demonstrate that information security in healthcare is good.

The certification was carried out by DEKRA, one of the largest testing and certification bodies in the world. DEKRA has extensive expertise in auditing and certifying management systems in the field of quality, safety, sustainability and information security.

Ready for
the step to the cloud?

Is your company ready for the step to the cloud? One of our specialists will be happy to give you non-binding advice, online or on location.

Latest news