Information security

Data handling

Stefna places great emphasis on the secure storage of data and information. The specification is based on the ÍST ISO/IEC17799 standard for information security. The handling of systems, information and data is subject to Stefna's standard operating procedures, which dictate the handling of data and information to ensure security. The company enforces laws on privacy and the processing of personal data.

Hosting environment

Stefna's web servers are hosted in a perfect space for central computer equipment where the utmost security is ensured with access restrictions as well as control and monitoring of environmental factors. The hosting space is equipped with powerful cooling equipment, humidity control, backup power supplies and a diesel generator. Maximum uptime is therefore guaranteed and the customer's website is accessible at any time. The hosting environment is ISO – 27001 certified in information security management and the machine rooms and processes are structured according to the requirements of that standard.

Copying

Standard operating procedures apply to the backup process. Daily backups of data and databases are made between 00:00 and 09:00 at night. Immediately after the backup is taken, the backups are moved to a secondary server in another system space located in another building. Backups are stored for 80 days and, in addition to general precautions and automatic error messages, regular checks are carried out. Backup tests are carried out at least once a month and are carried out by Stefna's system administrator and technical manager. If a deviation occurs during the backup, the administrators receive an email and respond by examining the error messages in the system logs so that the deviation can be identified.