Information Security

To find out more about our GDPR Information Security Review Service, please download a copy of our brochure by clicking here. 

Veratta has extensive expertise and experience in making information security work for both pension scheme service providers and pension scheme trustee boards. Through our tailored information security services, we offer peace of mind around data security threats, and provide our clients with confidence that their operations are working as they expect them to.

Whether you have specific concerns about the threats to your data, systems, or processes, or you simply want reassurance that you are meeting your pension scheme information security obligations, we can help.

Information security is a key aspect of our business, and Veratta provides a range of services to help our clients safeguard their own assets as well as the benefits and personal information of pension scheme members.

We work with our clients to understand the potential information security vulnerabilities to their organisation, their pension schemes and their pension scheme members. Our staff can offer support and direction to help organisations implement an information security management framework, and provide guidance against incidences of unauthorised access or disclosure to pension scheme data.

We provide pension industry focussed information security gap analysis, conduct audits and risk assessments, assist with policy development and deliver staff training and awareness.

The services that we provide can help you to achieve compliance with:

  • The IORP (Institutions for Occupational Retirement Provision) directive to put in place effective risk management controls and maintain a risk evaluation report.

  • The GDPR (General Data Protection Regulation) legislation to maintain the privacy and security of data subjects' personal data.

  • Cyber Essentials and Cyber Essentials Plus accreditation.

  • ISO:27001 accreditation.