During 2019 Archiva Srl chose to merge the pre-existing Quality Management Systems (QMS), Information Security Management System (ISMS), into an Integrated Management System (IMS), extending the scope of application and relevance also to the Business Continuity Management System (BCMS), to the specific aspects required by AgID, the agency for digitalization in Italy, to accredited long term data preservation service proivider and finally to what is necessary for the correct implementation of Regulation (EU) 2016/679, known as GDPR.
ISO/IEC 27001
ISO/IEC 27001 is an international standard which provides the requirements for an Information Security Management System (ISMS), in particular for the aspects of physical, logical and organisational security.
The objective of ISO/IEC 27001:2013 is to protect data and information from threats of any kind, in order to ensure their integrity, confidentiality and availability, and to provide the requirements to adopt an adequate ISMS aimed at correct handling of the company’s data.
The certificate, issued by the CAB (Conformity Assessment Body) KIWA Cermet Italia, includes the following field of activity:
DESIGN, DEVELOPMENT AND MAINTENANCE OF PRODUCTS AIMED AT PROVIDING ELECTRONIC INVOICING SERVICES IN SaaS MODE, STORAGE IN COMPLIANCE WITH STANDARDS AND BUSINESS PROCESS REENGINEERING.
ISO 9001
A focus on quality is fundamental for Archiva. In fact, the market is constantly looking for guaranteed quality and performance of products and services, forcing several organizations to demonstrate that the level of quality of their business meets the parameters imposed by regulatory requirements. Thanks to the certification for the international standard ISO 9001, it is possible to improve the internal quality management system with positive impacts on business performance, customer satisfaction and many other advantages.
This certification, issued by the CAB (Conformity Assessment Body), Kiwa Cermet Italia, includes the following field of activity:
DESIGN, DEVELOPMENT AND MAINTENANCE OF PRODUCTS AIMED AT PROVIDING ELECTRONIC INVOICING SERVICES IN SaaS MODE and STORAGE IN COMPLIANCE WITH STANDARDS.
ISO 22301
Cyber attacks, external events, production bottlenecks or organizational problems: these are all possible sources of risk that can put a strain on a company’s business continuity or even lead to failure. Internal and external risks cannot always be fully foreseen or avoided, and the time factor is crucial in these situations. Therefore, it is necessary to implement a business continuity plan that is effective and useful for any possible “crisis” scenario.
A certification under international standard ISO 22301 can improve the business continuity management system with positive impacts on business performance, customer satisfaction and many other advantages.
This certification, issued by the CAB (Conformity Assessment Body), Kiwa Cermet Italia, includes the following field of activity:
PROCESS DELIVERY FOR THE SURVEYING OF DIGITAL ARCHIVES IN ACCORDANCE WITH AgID PROVISIONS.
UNI/PdR 43.2 2018
The management and monitoring of personal data processing, as defined in Regulation (EU) 2016/679 (GDPR), is an issue of particular relevance for Archiva, which many companies, from all sectors, use for personal data processing activities. In the wake of standardisation activities in the GDPR field, and in order to support companies in the implementation of this Regulation, UNI has defined a series of requirements for the protection and conformity assessment of personal data in the ICT field UNI/PdR 43.2:2018.
Thanks to the certification in accordance with UNI/PdR 43.2:2018, it is possible to certify that the company carries out measures for the correct treatment of personal data in an objective and consistent way. This lays the foundation for certification mechanisms as advocated by Article 42 of Regulation (EU) 2016/679. The certificate, issued by the CAB (Conformity Assessment Body) Kiwa Cermet Italia, includes the following field of activity:
DESIGN, DEVELOPMENT AND MAINTENANCE OF PRODUCTS AND SERVICES AIMED AT PROVIDING ELECTRONIC INVOICING SERVICES, STORAGE OF DIGITAL ARCHIVES ACCORDING TO AGID PROVISIONS AND BUSINESS PROCESS REENGINEERING.
AGID certificate
Archiva, as the Registrar Accredited with AgID – Italian Digital Agency – obtained the certificate from KIWA Cermet Italia in compliance with the requirements identified at art. 24 of Regulation (EU) 910/2014 and IDAS as defined in the Accreditation Circular no. 5/2017 of ACCREDIA.
Its process is thus perfectly aligned with the new Technical Rules on the preservation of digital documents and its organisation meets all the requirements of AgID, including organisational, technical and financial reliability, which are needed to undertake preservation work.
Code of ethics
Archiva has adopted a code of ethics with the aim of defining a “Code for ethics in business”, to set out the principles of transparency, truthfulness of information and reports in regard to the multiple corporate stakeholders, competitors, customers, suppliers, internal and external collaborators and, in general, the market.
It is an integral part of the Organisation, Management and Control Model adopted by the company under the provisions of Leg. Decree 231/2001 “Regulation of administrative liability of individuals, companies and associations with legal status”.