ADWISERY carried out EFGS mobile app data security management system compliance with LST ISO / IEC 27001: 2006 and GDPR requirements
For the National Center for Public Health under the Ministry of Health of the Republic of Lithuania (hereinafter – NCPH), we carried out a Security Plan for the Interfaces between the National Interfaces with the EU Contact Tracing and Alerting Program for the Infectious Diseases Surveillance and Control Information System Mobile App. and data security audit services.
During the implementation of the contract:
- Performed an assessment of the technological vulnerabilities and hacking testing of the interfaces of the interactive interfaces of the EFGS mobile app’s national interfaces with the EU contact tracking and alerting apps.
- Performed the assessment of the compliance of the data security management system of the EFGS mobile app managed by the NCPH with the requirements of the Lithuanian legislation regulating electronic information security and cyber security (hereinafter – the Conformity Assessment) and prepared and agreed with the NCPH the Conformity Assessment Report and the plan.
- Performed an assessment of the compliance of the NCPH with the general data protection GDPR and the Law on the Legal Protection of Personal Data of the Republic of Lithuania and the State Data Protection Guidelines (hereinafter – the GDPR compliance assessment) and prepared and agreed with the NCPH a GDPR compliance assessment report.