Data security matters are an important part of management, competence, risk management and administrative development. The starting point of a decision-in-principle on the government administration’s data security is that each organisation is responsible for the data security of its own operations.
At government administration level, responsibility for data security steering and development lies with the Ministry of Finance. Hansel’s framework agreements take into consideration the government’s data security guidelines and requirements.
At Hansel, data security means ensuring the confidentiality, integrity and accessibility of data. Data security is a reflection of sound business practices and part of Hansel’s risk management.
By participating in development projects related to the digitalisation of procurements, Hansel helps to promote government data security and to create models in which data security can be taken into account in framework tendering processes. Framework agreements offer customers an opportunity to specify their own, unique data security requirements.
Data security aspects are taken into account in all of Hansel's operations and procurement solutions. Security is a key consideration for systems, tools, practices and procedures. It is a reflection of sound business practices and part of Hansel’s risk management.
Basis for data security policy
Key business-critical data security principles and requirements are set out in Hansel’s data security policy. Data security obligations apply to all Hansel employees. Hansel’s IT Manager is responsible for providing data security related training and instructions, and for in-house communications.
Hansel is committed to upholding the basic data security level specified for government administration. Hansel’s IT Management fulfils the basic-level data security requirements for state administration.
Tendering processes are required to meet the basic, increased or high level specified in the instructions issued by the Government Information Security Management Board (VAHTI). Furthermore, customers may contribute to the data security level of the services provided.