Quality policy

Our TÜV certifications


Unsere Zertifizierungen

ORISA Software GmbH is certified according to DIN EN ISO 9001:2015 for software development and distribution and according to ISO/IEC 27001:2022 for information security

ORI­SA’s ser­vices are sub­ject to careful and con­ti­nuous qua­li­ty manage­ment. We offer our cus­to­mers com­pre­hen­si­ve sup­port for the intro­duc­tion of our soft­ware pro­ducts and the imple­men­ta­ti­on of cus­to­mi­sed soft­ware solu­ti­ons. This includes the deve­lo­p­ment of con­cepts, sup­port with data pre­pa­ra­ti­on, the coor­di­na­ted deve­lo­p­ment of func­tion­al spe­ci­fi­ca­ti­ons and spe­ci­fi­ca­ti­ons as well as the long-term main­ten­an­ce of the soft­ware.

In 2024, ORISA was recer­ti­fied to ISO 9001:2015 by TÜV Thü­rin­gen. This inter­na­tio­nal­ly reco­g­nis­ed stan­dard under­lines our com­pany’s high level of qua­li­ty awa­re­ness and con­firms that all pro­ces­ses are geared towards maxi­mum effi­ci­en­cy and cus­to­mer focus in order to con­ti­nuous­ly deli­ver first-class pro­ducts and ser­vices. The cer­ti­fi­ca­ti­on stands for con­sis­tent opti­mi­sa­ti­on of inter­nal pro­ces­ses and for our efforts to always meet and exceed cus­to­mer expec­ta­ti­ons.

ORISA was also cer­ti­fied accor­ding to ISO/IEC 27001:2022 in 2024. This cer­ti­fi­ca­ti­on con­firms that a robust infor­ma­ti­on secu­ri­ty manage­ment sys­tem has been imple­men­ted that pro­tects the con­fi­den­tia­li­ty, inte­gri­ty and avai­la­bi­li­ty of data in accordance with inter­na­tio­nal stan­dards. The audit ensu­res that com­pre­hen­si­ve secu­ri­ty mea­su­res have been estab­lished to mini­mi­se infor­ma­ti­on risks and gua­ran­tee data secu­ri­ty at the hig­hest level.

The manage­ment defi­nes the basic prin­ci­ples of the com­pany’s poli­cy on qua­li­ty, know­ledge manage­ment, data pro­tec­tion, infor­ma­ti­on secu­ri­ty, occu­pa­tio­nal health and safe­ty. It ensu­res that this poli­cy:

  • illus­tra­tes the com­pany’s core com­pe­tence, orga­ni­sa­ti­on and stra­te­gic ori­en­ta­ti­on,

  • pro­vi­des a frame­work for the defi­ni­ti­on and eva­lua­ti­on of objec­ti­ves with cus­to­mer satis­fac­tion, per­son­nel deve­lo­p­ment, eco­no­mic effi­ci­en­cy, data pro­tec­tion and occu­pa­tio­nal health and safe­ty,
  • com­mits to the rea­li­sa­ti­on and con­ti­nuous impro­ve­ment of the inte­gra­ted manage­ment sys­tem (IMS) and
  • is com­mu­ni­ca­ted and prac­ti­sed within the com­pa­ny.

We pay par­ti­cu­lar atten­ti­on to secu­ring the cus­to­mer’s invest­ment in the long term by sys­te­ma­ti­cal­ly deve­lo­ping our pro­ducts, reco­g­nis­ing pio­nee­ring trends at an ear­ly stage and imple­men­ting them con­sis­t­ent­ly, as well as con­ti­nuous­ly pro­vi­ding a high-qua­li­ty ser­vice. Our cus­to­mers’ trust is our grea­test asset, which is why we always offer maxi­mum trans­pa­ren­cy and open, bin­ding com­mu­ni­ca­ti­on.

The gui­ding prin­ci­ples of ORISA and the­r­e­fo­re for all employees are qua­li­ty, inno­va­ti­on, relia­bi­li­ty, data pro­tec­tion and secu­ri­ty. The IMS is the cen­tral working tool for this and includes:

  • detail­ed regu­la­ti­ons on aut­ho­ri­sa­ti­ons and respon­si­bi­li­ties,

  • orga­ni­sa­tio­nal regu­la­ti­ons on the tasks and func­tions of the indi­vi­du­al are­as and the respec­ti­ve inter­faces,
  • work ins­truc­tions for inter­nal pro­ces­ses such as the imple­men­ta­ti­on of pro­jects, source code com­men­ting, the con­trol and ver­sio­ning of infor­ma­ti­on and qua­li­ty assu­rance,
  • the orga­ni­sa­ti­on of high-qua­li­ty trai­ning mea­su­res for all employees,
  • sound health and safe­ty manage­ment and
  • estab­lished infor­ma­ti­on secu­ri­ty.