Go directly to contents.
Suomi.fi e-Identification

Information security

Design and implementation of the service

The requirements of information security have been addressed in the design and provision of Suomi.fi e-Identification. The production environment of the service is secure, and any integrations and links to the service have been implemented in compliance with the applicable requirements.

The Digital and Population Data Services Agency uses a risk management technique to regularly assess the implementation of the information security requirements of the services. In addition, the risks associated with the service are regularly monitored.

The legislation on information security and data protection has been complied with in the design and provision of the service. A privacy statementOpens in a new window. has been created on the processing of personal data. The requirements of the GDPR on the processing of personal data have been considered in the design and implementation of the service.

The Digital and Population Data Services Agency carries out regular performance tests. When changes are made to the service, the functionality of the changes and the data security of the service are tested in advance. Testing is also performed to verify the disturbance-free operation of the service during the changes.

The service is audited by both the Digital and Population Data Services Agency and external parties.

The usability and reliability of the service are regularly monitored.

Monitoring and disruptions

Normal and anticipated external disruptions and security threats have been taken into consideration in service design and implementation. Processes are in place for monitoring and incident management.

Updated: 4/11/2025

Are you satisfied with the content on this page?