Protecting your data, securing your trust

At GreenFlux, information security is of paramount importance, and we are dedicated to upholding industry-leading standards.

To ensure the safety and confidentiality of customer data, we have implemented an Information Security Management System (ISMS) that complies with ISO 27001:2022 requirements. Also, our management team is committed to maintaining a secure environment for processing confidential information, and our ISMS is subject to regular internal and external audits. Committed to customer satisfaction, growth, and improvement, we continually review and improve our ISMS. This commitment to information security involves adopting a process approach for developing, implementing, and improving our ISMS.

  • Understanding and establishing security policies and objectives

    At GreenFlux, we prioritise the establishment of comprehensive security policies and objectives, recognizing their importance in safeguarding our business and customer information. We firmly believe in cultivating a profound understanding of the information security requirements specific to our organisation and the broader industry.

    This understanding drives our commitment to formulating robust policies and setting clear objectives to ensure the confidentiality, integrity, and availability of our information assets. By aligning our security policies and objectives with best practices and regulatory standards, we strive to create a secure and resilient environment that safeguards our stakeholders' trust and meets their expectations.

  • Implementing controls and managing risk

    We employ proactive measures to effectively manage business risks, specifically by implementing stringent controls that safeguard customer data. Furthermore, we conduct annual external penetration tests on our software and platform, aiming to identify and address any possible vulnerabilities, thereby guaranteeing the greatest level of security.

  • Monitoring and improving the ISMS

    At GreenFlux, we uphold an unwavering dedication to ensuring the efficacy of our Information Security Management System (ISMS) through consistent monitoring and periodic performance reviews. We prioritize continual improvement, employing objective measures to guarantee the perpetual protection of our customers' data. Our commitment to information security and customer satisfaction is upheld by the availability of ample resources dedicated to monitoring and maintaining our ISMS.

  • Communicating and meeting requirements

    We prioritise staying up to date with all relevant statutory and regulatory requirements related to our business activities. We understand the importance of compliance and take our responsibility seriously to maintain a secure environment for our customers. Therefore, we aim to ensure that everyone involved in our operations understands and follows the appropriate policies and procedures to maintain compliance. This commitment to communication and compliance helps us to provide the best possible service to our customers while maintaining their trust and confidentiality.

    Please read our full Information Security Compliance Statement

FAQ

We're more than happy to answer your questions

  • What is information security and why is it important?

    Information security involves protecting sensitive data from unauthorized access, ensuring confidentiality, integrity, and availability. It is crucial for safeguarding privacy, preventing data breaches, meeting legal requirements, and maintaining trust with stakeholders.

  • How does GreenFlux Assets B.V. protect my data?

    GreenFlux Assets B.V. protects your data through an Information Security Management System (ISMS) based on ISO 27001:2017 standards. The ISMS includes security policies, procedures, and technologies that help ensure the confidentiality, integrity, and availability of your data.

  • How often are internal and external audits of the ISMS conducted?

    Internal and external audits of the ISMS are conducted regularly to ensure that security controls are effective and comply with ISO 27001:2017 standards. Internal audits are conducted at least once a year, while external audits are conducted by independent auditors.

  • How is awareness of information security among employees raised?

    At GreenFlux Assets B.V., we conduct regular awareness sessions and provide educational materials to ensure that our employees are fully informed about the importance of information security and are equipped to minimize security risks. These sessions cover best practices for information security, raising awareness about detecting phishing attacks, and promoting secure usage of passwords and other authentication methods.