At TRUE, we have been working with technology and managing large volumes of data for years. Our deep understanding of technical flows and system development has made us experts in building system solutions. We understand the importance of data protection and use our expertise to ensure that our clients’ systems always meet the highest security standards. To further expand our knowledge, to always keep up with the latest laws and threats we also work with a data security experts at OneMore Secure, and have received their Cyber Hygiene Certification which is a testament to our current and ongoing dedication to data security. Link to the Certificate here.

Why Data Security is Critical

Today, data security is a technical necessity and a cornerstone for building trust with customers and partners. Personal data and business-critical information must be protected from breaches and misuse. And, with a name such as TRUE, we feel that data security is of the utmost importance. We safeguard against the misuse of our technology by completing background checks on the organizations who become our clients and partners, whenever necessary.

How We Work with Data Security

Our approach to data security involves a comprehensive plan. Here are some of the key security measures we implement:

• Encryption: We use strong encryption for both stored and transmitted data, protecting information from being read or manipulated by unauthorized individuals.
• Authentication and Access Control: We ensure that only authorized users can access sensitive information through robust authentication and carefully defined access controls.
• Incident Management: We have protocols for handling security incidents quickly and effectively. Our experience ensures we can minimize damage and promptly restore security.

“To this day, we have never had a data breach or any critical information compromised. We plan to keep it that way.”

Even though we follow GDPR-rules and regulations, our clients often use a Data Protection Agreement (DPA) on top of our regular contract. Feel free to contact us and we can provide you with an Agreement which can be used between our two organizations.

‍

Data Security & Blockchain

Our founder Patrik Slettman has written an article about the use of blockchain, and how it pertains to GDPR and data security. Read the article here.

‍

Best Practices for Data Security

For companies looking to strengthen their own data security, we have compiled some of our top recommendations:

• Perform Regular Security Audits: Conduct regular reviews of your systems to identify potential security gaps before they can be exploited. This includes penetration testing and vulnerability scans.
• Implement Strong Authentication: Use multi-factor authentication (MFA) to increase login security. This reduces the risk of unauthorized access to your systems.
• Keep Systems and Software Updated: Ensure that all systems and applications are regularly updated to protect against known vulnerabilities. Automated updates can help ensure nothing is left to chance.
• Encrypt All Data: Encrypt data both at rest and in transit to ensure its security, even if it falls into the wrong hands.
• Train Employees in Security: Employees are often the weakest link in a company’s security chain. Regular training on how to recognize and avoid security threats, such as phishing attacks, is crucial.
• Limit Access as Necessary: Use the principle of least privilege (PoLP) to ensure that users only have access to the data and systems necessary for their tasks.
• Develop and Test Incident Response Plans: Have a clear plan for handling security incidents and test it regularly. This ensures that everyone knows what to do during an incident and that the plan works as expected.

“It’s helpful to use external testers —it’s easy to become blind to problems in your own systems.”

‍

‍

Interoperability and eIDAS 2.0

TRUE Original is built to meet the future’s demands for secure, verifiable, and environmentally conscious digital document management. The platform is fully compatible with the EU’s new digital regulations, including eIDAS 2.0, GDPR, the Digital Services Act, and ISO standards. Below is our policy and technical readiness regarding key regulations.
‍

eIDAS 2.0: Digital Identity & Trusted Services

TRUE supports eIDAS 2.0 by offering:

• Verifiable digital documents via blockchain (diplomas, certificates, licenses, attestations).
• Independent document authentication without the need for intermediaries.
• Integration support for the EU Digital Identity Wallet, a requirement in eIDAS 2.0.
• Ownership model for recipients, where individuals control their data and documents.
  ‍

GDPR & Digital Services Act: Data Protection & Transparency

TRUE provides every recipient with:

• Access to their documents through their own profile.
• The ability to control the hiding of personal data, and the documents itself.
• Full transparency on who created, signed, and handled the document.
• Compatibility with ISO 27001 and other data security standards.
  ‍

Environmentally Smart Digitalization & Sustainability

TRUE uses energy-efficient blockchains:

• Polygon: carbon-neutral & low transaction costs
• Fantom: high performance, energy-efficient Lachesis consensus

This allows for a significantly lower carbon footprint than traditional document handling or PDFs via email.
‍

Compatibility with Public Digital Services

TRUE is system agnostic, and work with existing system and work-flows:

• Integrate via API with municipal, governmental, and EU-related systems.
• Be used for automated credential flows (e.g., MYH robot, student registers).
• Be combined with eIDs such as BankID, Freja eID, and eIDAS-approved options.
  ‍

Example Document Types:

• Diplomas, educational certificates, licenses, compliance documents, policy frameworks, proof of ownership, membership certificates and more.

Conclusion

TRUE Original is not just a modern platform for digital credentials, but a future-proof partner in your digital transformation. By aligning with eIDAS 2.0, GDPR, and other key regulations, you can rest assured that every document you create is secure, verifiable, and ready for tomorrow’s demands.

Contact us for a demo, additional info or a quote: https://www.trueoriginal.com/contact-us

‍

‍