Information security

Ensure information and data security with Pagero’s physical and cyber protective measures.

Information security

The security of our clients’ data is of the greatest importance to Pagero. We ensure data security through the implementation of multiple industry-specific measures. Below are a few examples of the way we work.

Examples of protective measures

Physical security

Secure communication

User access for privileged accounts

Processes and routines

Physical security

Our data centres for Pagero Online are protected according to industry standards for burglar alarms, fire protection and flooding. All centres are controlled 24/7 and only authorised staff have access to the buildings in accordance with access policies and procedures.

Secure communication

Pagero’s platform supports secure communication protocols to ensure that transferred information cannot be accessed by unauthorised personnel or third parties.

User access for privileged accounts

Single Sign-On using Multi Factor Authentication (MFA) is mandatory for all Pagero support staff accessing Pagero Online.

Processes and routines

We are constantly developing our risk and incident management processes. Policies, guidelines, process descriptions, instructions and security awareness training sessions help ensure that Pagero’s personnel know how to securely handle information for our clients and act in case of an incident.

Physical security

Secure communication

Pagero’s platform supports secure communication protocols to ensure that transferred information cannot be accessed by unauthorised personnel or third parties.

User access for privileged accounts

Single Sign-On using Multi Factor Authentication (MFA) is mandatory for all Pagero support staff accessing Pagero Online.

Processes and routines

ISO 27001 and 27701 certification

Pagero has robust information security and data protection management systems in place to ensure that customer data is kept secure and managed in accordance with data protection legislation. Pagero Online is ISO 27001 and 27701 certified, which is a proof of the high standard of our information security and data protection management systems. For these certifications, Scandinavian Business Certification conducted a rigorous third-party audit of our internal ISMS processes in information security, cybersecurity and data protection, all subject to ongoing evaluations to maintain this status.

ISAE 3000 and ISAE 3402 reports

To support business objectives and demonstrate compliance, we implement and maintain a reliable IT control environment according to ISAE 3000 SOC2 TYPE2 and ISAE 3402 SOC1 Type 2 report standards. Independent auditors Transcendent Group AB and Mazars AB perform yearly reviews and issue reports that evaluate our trust service principles and criteria according to the report standards.

Vulnerability and threat management

Pagero works closely with Outpost24, a vulnerability and threat management company to provide best-in-class solutions and help users identify and mitigate weaknesses in their networks. Outpost24 offers real-time vulnerability alerts and solution-based reports that facilitate instant recognition of imminent threats.

Cyber Essentials

Since October 2014, participation in the Cyber Essentials scheme has been mandatory for suppliers of UK Government contracts which involve the handling of personal information and provision of ICT (information and communications technology) products and services. Pagero was certified in 2016 and we are entitled to use the Cyber Essentials badge to certify compliance.

Want to know more?

Contact us with your information security queries.

Ensure information security
Put your data in trusted hands
Communicate safely with all your business partners

Information security