The key to excellent cyber security — certification of 7Pass
A milestone for trust and security: ProSiebenSat.1 sets an example for information security by certifying 7Pass according to ISO/IEC 27001. 🔒
In today’s connected world, where digital innovations are advancing rapidly, the topic of cyber and information security is moving to the center of global discussions. The increasing reliance on digital platforms, the integration of artificial intelligence, and the exponential growth of data traffic have created a new era of connectivity. In this scenario, protection against cyber threats is rapidly gaining importance. At P7S1, data security is also a key priority for us, and we attach great importance to ensuring that personal data is protected and that there are no security gaps. Our teams, who deal with all topics relating to IT, data, and security daily, are constantly working on finding technical solutions to fulfill the standards and go beyond them.
A brand new example, that underlines how we are committed to data security at P7S1 is the certification of our single sign-on solution 7Pass: Our IT and data teams have reached an important milestone in information security with the ISO/IEC 27001 certification of their renowned. In the following article, you will learn more about the importance of 7Pass, the certification process, and why this achievement is important for ProSiebenSat.1.
What is 7Pass?
With 7Pass, our users can log in to numerous websites, online offers, and mobile apps from P7S1 and selected partners and use their services (e.g., Joyn, our TVCs, Verivox, marktguru, mydays, etc.). Since 2017, the Group-wide single sign-on system has made it possible to access various platforms with just one login via centrally stored login data. With 7Pass, we collect first-party data to optimize our products or develop new ones. First-party data is collected internally in the Group, such as customer data or app usage data.
Why is the ISO/IEC 27001 certification important for P7S1?
7Pass has now reached another milestone: The single sign-on solution has been certified by TÜV SÜD according to ISO/IEC 27001. This international norm defines standards and best practices for information security systems.
Sisco, Director Data Strategy at ProSiebenSat.1 Digital Data GmbH, who played a key role in the certification process, emphasizes: “The certification is a milestone for P7S1 and further strengthens the trust of partners and users in 7Pass. It proves the high standards we maintain in data security. We also bring these to netID, where we form valuable partnerships with other companies around first-party data. The certification of 7Pass can thus be a blueprint for many other areas in the company. In the future, we will seek this attestation of our quality standard for various fields of application in the tech area.”
Why is the certification important for us?
The importance of IT security has increased significantly, as cyberattacks increased. The certification of 7Pass proves that P7S1 focuses on cyber risks, meets the international leading standard with high-security requirements, and implements best security practices. At the same time, it needs the certificate to continue being an active part of netID with 7Pass.
The Membership in netID allows users to log in to all P7S1 platforms with a simple and secure login that is valid for various applications — at the same time, it gives us access to a large amount of first-party data. In addition, 7Pass users can also use netID to log in to a variety of other platforms, as the 7Pass account is also used as a NetID account. This was developed considering European data protection standards.
How did the certification process work?
TÜV SÜD’s certification process comprises various stages and, in the case of 7Pass, extends over around four years. TÜV SÜD already conducted an initial gap analysis in 2019 to identify improvement options for the product. Subsequently, 7Pass was further optimized to meet the standard. In 2022, the single sign-on solution was completely rebuilt from a technical perspective. After a further gap analysis by the project team and external consulting, an internal audit followed, which is also part of the certification and puts the product through its paces. The final, four-day certification audit took place in summer of 2023. Our service provider and contract management were also scrutinized — and even passed the certification with an honorable mention.
After that, the colleagues reached the milestone: The TÜV certificate “Provision and operation of the Group-wide single sign-on solution 7Pass for ProSiebenSat.1 Media SE platforms” was issued and came into effect on September 28. It will initially be valid for two years — provided the monitoring audit in 12 months’ time is passed successfully. At the same time, we are constantly working to further strengthen our information security and ensure our competitiveness.
As part of the entire process, we would like to thank all our colleagues who actively supported us in achieving certification! 👏
