Information Security and Compliance

Our Information Security Policy (or 'IS Policy') lays the foundation for Information Security at NovoServe.  

Our Mission 

Our mission is to empower you with the best innovative Infrastructure-as-a-Service solutions. The highest priority of NovoServe is meeting the uptime service levels agreed with customers, and Security and Compliance are conditional for the quality of services. Customers do not want to suffer from security or compliance issues at NovoServe. The process of information security is primarily focused on the quality of information, but at the same time it is an enabler for responsible and reliable service delivery as well as new, innovative ways of working.

Our Principles 

These business priorities can be translated into confidentiality, integrity and continuity requirements and the risk appetite is low. The objective of NovoServe is to increase maturity and the defined and implemented measures are continuously proven to be effective in relation to the objectives of NovoServe and within the risk appetite. NovoServe considers the interests of internal and external stakeholders defining the information security strategy. Any stakeholder may have requirements for NovoServe to take into account.

Our Security Organisation 

An adequate setup of the "Security Organisation" is a prerequisite for the effectiveness of the Information Security Management System (ISMS). The CISO is responsible for enforcing the Information Security policies, providing support, controlling and reporting on Information Security. The Privacy officer (PO) is responsible for developing and monitoring the privacy policy, provides support in the implementation of this policy and plays a major role within the organisation, by acting as a point of contact for privacy issues in the organisation. 

Our Risk-Based Management 

Information security is a continuous process. In order to keep information security under control at all times, it is primarily important to apply a risk-based approach. Risk management is part of the Information Security Management System (ISMS) implemented by NovoServe. In order to be able to assess risks, NovoServe has identified the most important data collections, processes and systems on which the organisation depends. Classification is used to determine what level of security measures are necessary, which is agreed upon and documented in standards. Security measures are taken to mitigate assessed risks. 

Our Security Standards 

NovoServe aligns its security measures and controls with globally recognized standards, including ISO27001 and other related frameworks. This ensures we maintain a robust, secure, and trustworthy environment for our customers.

Enschede, April 2025 

NovoServe