Audit & Assurance Services

Assurance Audits are professional assessment services that perform audits according to internationally accepted auditing standards for assurance, such as ISAE 3000. ISAE 3402 is applied when there is outsourcing where financial information is processed by a service organization (SOC).

The Baseline Informatiebeveiliging Overheid is applicable for information security within all Dutch government organizations and stakeholders.

DigiD is used to identify and authenticate nearly 14 million citizens to government, healthcare, and even other organizations' web applications. The government takes many actions in securing DigiD, including an annual audit by an RE (Registered EDP Auditor). Start preparing your DigiD Audit here.

Municipalities have a lot of information and data from citizens. In addition to BIO compliance and the annual DigiD audit, they must also comply with ENSIA, Eenduidige Normatiek Single Informatie Audit, a one-time IT audit and Suwinet, a digital infrastructure for exchanging data.

Hospitals and medical facilities possess a lot of personal data. The Acceleration Program for Information Exchange Patient and Professional (VIPP) aims for hospitals in The Netherlands to digitize in order to make healthcare safer, more patient-oriented, and more efficient.

Hospitals have information security, high on their agenda. The Dutch Association of Hospitals (NVZ) and the Dutch Federation of University Medical Centers (NFU) want to implement a sector-wide quality improvement to at least the level of the NEN 7510 standard.