Digital Trust Services of Swiss Post meet FINMA requirements
The products and solutions of Swiss Post for secure electronic communication and digital identity have been given another seal of quality. KPMG Ltd has confirmed that the Digital Trust Services meet the FINMA requirements for outsourcing banking services. They are used at many financial institutions.
For secure electronic communication and the protection of electronic business processes, under the label «Digital Trust Services» Swiss Post offers the secure e-mail service IncaMail, the digital identity SuisseID and also SwissSign security certificates. The quality of these Digital Trust Services has been certified on the basis of international standards. In addition, the auditing firm KPMG has now confirmed that the solutions also meet the requirements of the Swiss Financial Market Supervisory Authority FINMA regarding the outsourcing of areas of operations of banks.
Growing demand for security solutions in the financial market
Banks can outsource essential services to other providers if these meet the requirements of banking secrecy and data protection. According to the FINMA circular 2008/7 «Outsourcing Banks» (revised in December 2012), this includes automated data manipulation. Here financial service providers outsource the protection of electronic communication and business processes so they can concentrate on their core business. The compliance requirements regarding the protection of client data still have to be fulfilled here. The demand for security solutions is rising constantly.
Secure communication and business processes at financial institutions
The Digital Trust Services from Swiss Post Solutions take on the protection and optimisation of electronic data processing for many financial institutions. The Cantonal Bank of St Gallen, for example, uses IncaMail for secure electronic communication with clients and reaches its clients specifically via encrypted e-mails. SuisseID is used by several thousand clients of Swissquote for secure login to online trading and for confirmations of transactions. Many financial institutions rely on SwissSign security certificates for e-mail signatures, logins and SSL certificates.
Recent confirmation of KPMG adds to existing quality seals
With the patented SAFE technology, IncaMail is recognised as a secure delivery platform by the Swiss Federal Department of Finance for electronic legal dealings in e-government and is certified according to ISO/IEC 27001.
SuisseID provides secure online authentication (also via mobile devices thanks to the Mobile Service) as well as legally valid digital signatures. It is subject to regular external audits according to the Federal Act on Electronic Signatures (ZertES) and is certified according to ISO/IEC 27001.
SwissSign certificates comply with requirements of the international standards ETSI (European Telecommunications Standards Institute), Webtrust and CA Browser Forum, and are also certified according to ISO/IEC 27001.