Paf has received official confirmation that the company has a very high level of information security management by obtaining the ISO standard ISO/IEC 27001:2013. Paf is the first Åland company to receive this internationally recognized certification.

“We are delighted to have succeeded in obtaining the ISO/IEC 27001:2013 certification about information security. Information security is a priority at Paf and we are very keen to protect our customers and ourselves against operational, IT and cyber security risks,” says Francois Maugis, IT Director with responsibility for information security at Paf.

Rigorous work has been carried out within Paf to obtain this certificate.

“We started in the knowledge that the process can take up to two years to complete, but we have a dedicated team that sometimes worked day and night to succeed quickly,” says Francois Maugis.

The certification puts Paf in a strong position to handle future reviews. It will also strengthen Paf’s profile for future partners and the authorities in different markets.

“This certificate gives the people examining us a faster and easier opportunity to see that Paf has mature, well-managed and verifiable information security management for our customers in particular. This is of the utmost importance in our industry,” says Linda Mattsson, Compliance Manager.

Online gaming companies are at a higher risk than regular companies, of being exposed to hacker attacks and fraud attempts. For this reason it is vital that companies like Paf do everything possible in their efforts to protect their customers, employees and the company as a whole.

“By introducing a tougher standardized risk management process, we are striving to manage the risks that exist in the industry. Then, of course, it is up to us to deliver and continue to develop a safe playground for our customers,” says Christer Fahlstedt, the CEO of Paf.