Which guideliens, procedures and checks has Eye-Able® implemented?
Ensuring regular, risk-based audits and assurance measures in compliance with legal and regulatory requirements
Eye-Able® Audit and Assurance Framework
Eye-Able® has established a structured audit and assurance framework based on ISO/IEC 27001, ISO/IEC 27002 and the requirements of DORA and RTS 2024/1774.
There are documented and internally approved guidelines that are reviewed annually and updated as necessary.
Audit processes
- Regular audits: External and internal audits are conducted at least annually on the basis of an approved, risk-based audit plan.
- Coverage: The audits cover regulatory, contractual and legal requirements.
- Independence: Roles for planning, execution, approval and evaluation are organisationally separated to ensure independence.
- Documentation: All audit measures and results are documented in an audit-proof manner.
- Deviations: Deviations are incorporated into a risk-based action management system with clearly defined responsibilities, deadlines and tracking processes.
Supplementary audits
Emergency audits and ad hoc assessments are covered by supplementary protocols.
Monitoring and reporting
The progress of measures is regularly evaluated and disclosed in management reports.
Conclusion
In this way, Eye-Able® ensures that the integrity and effectiveness of the audit process is guaranteed from both a regulatory and operational perspective.