Completely transparent: our management policy.

On the „Company“ page, you can read about ADESTIS: „You entrust us with the security and performance of your business processes – true values indeed“. We would like to revisit this point here and explain our management policy transparent. With it, we commit ourselves to the protection and confidentiality of data and information.

info-imageJörn BrauneManaging Director, Head of Labeling Solutions
info-imageDirk SchiffnerManaging Director, Head of Software Solutions
info-imageMarkus BertholdAuthorized representative, Head of Hosting & Cloud
info-imageMarian FischerAuthorized representative, Deputy Head of Hosting & Cloud

How do we live the regulations of DIN ISO 27001? 

The responsibility for the effectiveness of our Information Security Management System (ISMS) – certified according to DIN ISO 27001 – lies with us, the management of ADESTIS. Dirk Schiffner supports these efforts in his role as Managing Director.

What obligations does this entail? 

On one hand, we naturally commit ourselves to complying with the legal, normative, and contractual requirements for information security. However, it's important to understand that this task is never truly complete – therefore, we continuously improve our Information Security Management System.

How do we ensure information security in everyday life? 

We aim to ensure the continuous operation that is essential for the systems and applications entrusted to us. Special attention is given to the protection of data belonging to our customers, suppliers, and employees.

This also involves preventing incidents relevant to information security; ensuring the confidentiality, availability, and integrity of information; as well as enhancing awareness of information security among our employees and partners. In particular, we will support and promote individuals tasked with information security responsibilities.


Our specific policy in accordance with the GDPR 

To protect affected person's data in accordance with the General Data Protection Regulation (GDPR), we aim to:

  • Avoid reportable GDPR incidents,
  • Protect the data of affected individuals,
  • Increase GDPR awareness among our employees and partners,
  • Support and promote individuals tasked with GDPR responsibilities,
  • Reduce GDPR-relevant information,
  • Transparently inform affected individuals.