Deadline approaches for inspections of user environments for the secondary use of health and social data — two inspection bodies qualified to carry out the assessments
Information security now!
The Finnish Transport and Communications Agency Traficom has laid down the criteria for the information security inspection by accredited inspection bodies of the user environments referred to in the Act on the Secondary Use of Health and Social Data. Traficom has also defined the conditions in which inspection bodies may issue certificates attesting that requirements have been met.
Traficom has stipulated that the scope of inspection bodies’ accreditation must cover the instructions of the Ministry of Finance regarding the implementation of the Government Decree on information security in central government (VAHTI) or security auditing tool Katakri.
Entities that provide information secure user environments and wish to have their environment certified by an inspection body should contact an accredited body directly.