OREANDA-NEWS. February 11, 2010. Pursuant to the requirements of the existing legislation in the field of personal data security and FSTEK and FSB regulations, the insurance company OJSC ROSNO-MS has taken a set of organizational and technical measures to ensure security of personal information when processed in the company’s information systems. The methodological recommendations issued by RF FSTEK have served as a basis for the adaptive threats model and for performance of works aimed at building a personal data protection system, reported the press-centre of ROSNO.

Upon implementation of the project, the information system of OJSC ROSNO-MS was certified and obtained the Certificate of Compliance of Personal Data Information System to Personal Data Safety Requirements.

The measures taken by the company have enabled it to minimize the risks and threats traditional for an insurance company: breach of confidentiality (theft and loss of information, including personal information of the company’s clients), data access violations (blocking and deletion), data integrity violations (unauthorized and uncontrolled modification, false data intrusion).

Says Dmitry Chernykh, head of the Security Department of OJSC ROSNO-MS: "Information and personal customer data constitute one of the major assets of any insurance company. Data security affects the company’s image and the degree of customer confidence in the company. The successful completion of certification guarantees our investors, business partners and clients that ROSNO-MS not only renders high-quality services, but also provides maximum degree of data protection. One of the project’s results is that ROSNO-MS has gained additional competitive advantages in its work with large corporate clients, who pay special attention to data protection".

* Federal Law "On Personal Information" dated 27 July 2006 No. 152-FZ, Government Ordinance dated 17 November 2007 No. 781, Government Ordinance dated 15 September 2008 No. 687, etc.