The Inner Circle

 View Only
  • 1.  UK/EU Business Requirements

    Posted May 27, 2021 07:56:00 AM
    I am trying to find out specific ISO Standard requirements for datacenters in the UK/EU and also for RFPs of datacenter services. I have been told that these are required ISO 14001, 9001, and 27001 but wanted to verify that these are indedd requirements not a nice to have item. Thanks

    ------------------------------
    Bill DeLong CISSP/CCSK
    Senior Risk Assessor/Auditor
    Fortress Information Security
    Orlando, FL
    910-992-1108
    ------------------------------


  • 2.  RE: UK/EU Business Requirements

    Posted Jun 04, 2021 08:12:00 AM

    Here's a few things to start with ... but you're on the right track.

    Quality


    ISO 9001

    ISO 9001:2015 outlines a process-oriented approach to documenting and reviewing the structure, responsibilities, and procedures required to achieve effective quality management within an organization. Consider a systematic, independent examination of the quality system to determine whether the activities and outputs comply with ISO 9001:2015.

    Information Security Management (ISO27001)

    An ISO27001 certification covering both corporate policies and procedures, as well as those of all our operating data centers. The ISO/IEC 27001:2013 certification is one of the most stringent certifications for information security controls and confirms the information security controls and other forms of risk treatment are in place to detect and defend against potential data system vulnerabilities.

    ISAE 3402 Type II
    The International Standards for Assurance Engagements (ISAE) 3402 is an international assurance standard for reporting on controls at service organizations to protect shareholders and the general public from accounting errors and fraudulent practices. It became effective on June 15, 2011, largely in response to the passage of the Sarbanes-Oxley Act, and it defines the standards an auditor must employ to assess the contracted internal controls of a service organization.

    Environmental Management

    ISO 14001
    ISO 14001 is an internationally agreed standard that sets out the requirements for an environmental management system. ISO 14001:2015, an internationally recognized standard for the environmental management of the business. This includes the use of natural resources, handling and treatment of waste and energy consumption.

    Facility

    Uptime Institute - Tier II / III / IV etc. certification 



    ------------------------------
    Niels E. Anqvist
    CEO/President
    ZAFEHOUZE USA / ZAFEHOUZE EMEA
    ------------------------------



  • 3.  RE: UK/EU Business Requirements

    Posted Aug 12, 2021 09:25:00 AM
    You might be interested in nominee services?
    An intermediary usually provides nominee services to disguise the beneficial owner of the company. Nominee services refer to nominee shareholder and nominee director. The benefits of using nominee services are evident in cases where a businessman wants to protect his privacy.

    Benefits of nominee services
    The benefits of using nominee services can be seen in cases where an entrepreneur wants to maintain his privacy and reduces visibility in official records or does not want his name to be associated with the company in question. In addition, there may be a situation where a person has restrictions in performing the intended activity or when the law requires local management, such as a local secretary in Hong Kong.

    When quick action is required to register a business overseas in the event the client cannot travel, it is often more convenient to temporarily appoint a local business manager. When the intent is to open a business in a foreign jurisdiction such as BVI, Belize, Hong Kong, it can be physically complicated to show up in person.

    Nominee services usually guarantee confidentiality and anonymity. However, disclosure is sometimes made to a bank or investigative authorities during legal proceedings.

    The nominee services are widely used for tax planning and asset protection purposes. If the final beneficiary of the full corporate structure is based in low-tax countries, they should enjoy the benefits of the low-tax system on the dividends received from the profits generated.

    Other benefits arise from the country of registration and are often referred to in financial statements and reports. In some tax haven areas there is no need to present the annual financial statements, hence low auditing and bookkeeping requirements that offer certain benefits if the person is willing to increase privacy and confidentiality and hide their assets.

    ------------------------------
    Confidus Solutions
    ------------------------------