Information security is now a real factor that often determines the start of cooperation and has a direct impact on building trust between a provider and a client. At Forte, we have long treated this area as one of the foundations of our business. That is why we are proud to announce that our offices in Poland and Germany have obtained TISAX labels in the High Availability and Confidential scopes. These complement the ISO 27001 and 27018 certifications we already hold.

What is TISAX and what do the labels confirm?

TISAX (Trusted Information Security Assessment Exchange) is a standard developed by the German VDA association, widely used in the automotive industry and increasingly required by international business partners.

Obtaining TISAX labels means that an organization meets rigorous information security requirements, including:

• protection of confidential data (Confidential),

• ensuring high system availability (High Availability),

• risk and incident management,

• access control and infrastructure protection.

Although TISAX is largely based on the ISO 27001 standard, they are not identical certifications. ISO 27001 is a universal international standard for an Information Security Management System (ISMS). TISAX expands these requirements and adapts them to the specifics of the automotive industry, placing greater emphasis on practical implementation of safeguards, standardized assessments between partners, and transparency of results.

Our journey to TISAX labels

The process of obtaining TISAX labels is multi-stage and requires strong commitment and a deep understanding of the entire organization and its internal processes. It involves analyzing requirements, reviewing existing documentation, identifying gaps, and implementing necessary changes and standardization. However, documentation is not the key factor here—security awareness and understanding of risks are. An important element is employee training and ensuring up-to-date knowledge of secure information management.

The final audit was a valuable experience that gave us a new perspective on security. After months of preparation, audits, and improvements, we achieved our goal—we obtained TISAX labels in the following scopes:

• High Availability

• Confidential

We want to be a reliable partner for our clients. Obtaining the TISAX label, just like ISO certification, allows us to tangibly demonstrate the good practices implemented at Forte in relation to information security and the protection of our clients’ sensitive data.
— Dawid Liszka, Managing Partner, Forte Poland

This confirms that our approach to information security meets the highest standards required by international partners. We believe that a higher level of internal security and increased employee awareness will translate into greater trust from clients and partners, as well as enable us to acquire new projects. The process itself encouraged us to look at security more broadly and systematically. As a result, Forte is now an even more mature and resilient organization in the field of information protection.

Importantly, we do not treat this as the end of the journey, but rather as another step in continuous improvement.