Cybersecurity expertise for Dutch hospitals

... > Audit and Assurance > VIPP AUDITS

VIPP Audits

The Acceleration Program for Information Exchange Patient and Professional (VIPP) aims for hospitals in The Netherlands to digitize in order to make healthcare safer, more patient-oriented and more efficient. This means that healthcare institutions can exchange information digitally with the patient in a standardized and secure manner.

Performed by Registered EDP auditors (REs) within the framework of the Assurance Engagement Framework in accordance with Guideline 3000.

Assurance Engagement Framework

Institutions for specialist medical care (with the exception of academic hospitals, are divided into the three target groups VIPP 1 = Hospitals, VIPP 2 = other institutions for specialist medical care and VIPP 3 = GGZ institutions).

The subsidy will enable institutions to make standardized patient data accessible, so that:

  • patients receive correct and complete information;
  • patients can share the information (or have them share) with other healthcare providers;
  • the way is open for further healthcare innovations in the field of ICT.

The VIPP assessments are performed by Registered EDP auditors (REs) within the framework of the Assurance Engagement Framework and therefore in accordance with Guideline 3000. The VIPP assessment results in a report with the auditor's opinion on the extent to which the hospital has met the requirements. This report serves as justification information for the subsidy applied for in accordance with the Decree establishing a policy framework for subsidies for the Acceleration Program for Information Exchange Patient and Professional.


Secura helps large and medium sized organizations all over Europe raise their cyber resilience. We know the importance of cybersecurity in health care. With our broad security expertise, Secura is a strong partner for the implementation of the VIPP audit, possibly in combination with the DigiD audit. In addition, Secura is also happy to help you with the NVZ

Download Fact Sheet


Download Fact Sheet Secura VIPP 5 IT Audit

Overview of our VIPP 5 IT Audit Services



Would you like to receive more information on our VIPP Audit Service? Please fill out the form below and we will get back to you within one business day.



Secura is a leading cybersecurity expert. Our customers range from government and healthcare to finance and industry worldwide. Secura offers technical services, such as vulnerability assessments, penetration testing and red teaming. We also provide certification for IoT and industrial environments, as well as audits, forensic services and awareness training. Our goal is to raise your cyber resilience.

Secura is a Bureau Veritas company. Bureau Veritas (BV) is a publicly listed company specialized in testing, inspection and certification. BV was founded in 1828, has over 80.000 employees and is active in 140 countries. Secura is the cornerstone of the cybersecurity strategy of Bureau Veritas.