Certifications and Audits
Fabsoft is committed to the protection of corporate data. Certifications and audits are part of our commitment to excellence and continuous quality improvement and form the basis for the value we provide to our customers through all of the processes, programs, products and solutions we offer.
Fabasoft Security Guideline
With the adoption of the Fabasoft Security Guideline as part of Fabasoft's overall strategy, Fabasoft is placing data protection and information security on a binding level. The security guideline communicates the importance of information security, Fabasoft's information security goals, the organization of information security management, security measures taken and the continuous improvement efforts in the area of information security.
Active data protection
Data protection is a particularly high priority at Fabasoft Group. Fabasoft AG and its subsidiaries are committed to protecting information and in particular personal data. You can read about how we process and protect personal data from external persons and companies in the Fabasoft data protection declaration.
Fabasoft Code of Conduct
The Fabasoft Code of Conduct defines the requirements and principles for cooperation with contractors and forms the basis for reasonable and harmless behavior. As Fabasoft's business partners, Contractors accept the "Fabasoft AG Conditions of Purchase for Fabasoft and its subsidiaries" and all associated agreements, including the Fabasoft Code of Conduct for Contractors.
Framework Agreement for Internal Data Processing within the Fabasoft Group
There are different interfaces and data processing steps within the Fabasoft Group, in which the different individual personal data processing services are carried out among the companies within the group. The regulations defined in the “Framework agreement for internal data processing within the Fabasoft group” reflect the respective roles of the companies of the Fabasoft Group as joint controllers in a transparent manner pursuant to Art. 26 GDPR or as controller and processor pursuant to Art. 28 GDPR as well as the lawful form of this legal relationship, in particular in compliance with the regulations of the GDPR or the respective national data protection regulations. In the case of a breach of the framework agreement and/or applicable data protection provisions, Fabasoft International Services GmbH, FN 271303a, Honauerstraße 4, 4020 Linz, has undertaken to assume liability for claims by a data subject. Thus, a place of jurisdiction within the EU is available to the data subjects for the assertion of their rights.
The Framework Agreement in the valid version is available as download under the following link: Framework agreement für Internal Data Processing
The Standard Contractual Clauses (SCC) are available at the following links:
- For transfers of personal data to processors in third countries (2010)
EUR-Lex - 32010D0087 - EN - EUR-Lex (europa.eu)
- for the transfer of personal data (to controllers) to third countries (2001)
EUR-Lex - 02001D0497-20161217 - EN - EUR-Lex (europa.eu)
- Introduction of alternative standard contractual clauses for the transfer of personal data (to controllers) to third countries (2004)
EUR-Lex - 32004D0915 - EN - EUR-Lex (europa.eu)
Data Protection & Data Center Security
Data Center Operations
The Fabasoft Business Process Cloud is operated in highly secure European data centers. The entire hardware and software environment is designed for maximum availability and reliability, easy scalability, high security and easy maintainability. All performance features for data center operation can be found under "Performance Characteristics of Data Center Operation".