Incomes Register's information security certificate

The Tax Administration’s Incomes Register Unit was given an information security certificate in accordance with the international ISO/IEC 27001 standard.

The Incomes Register contains comprehensive income and personal data. Our certified management model for information security helps us ensure that all stored data is kept confidential, integrated and available.

We prevent accidental losses of data and we also prevent the data from falling into the wrong hands. The ISO/IEC 27001 is an international standard for information security, covering a number of different aspects of security. It contains 14 domains of security, including data protection, access control, and information security incident management.

The certificate proves that information security is properly managed through all work processes in the entire organisation of the Incomes Register.

Renewed external audits with regard to the certification are conducted every three years. Between the external audits, adherence to information security practices is controlled internally.

The Incomes Register’s current certification is valid until 22 August 2025. The certificate was issued to the Incomes Register for the first time on 22 August 2019.

For more information on the certificate based on the ISO/IEC 27001 standard, see the website of Kiwa Inspecta.