itrust consulting is committed to protecting your privacy and ensuring the protection of your personal information. itrust consulting takes privacy seriously. In accordance with the GDPR we implemented a privacy policy in our company that follows all principals and requirements of the GDPR. We use your PII in the context of the overall management of our business activity, only:
to manage information (potentially including PII) according to contracts (consulting, audit, training, research…);
to learn from past experience in our projects for upcoming projects (knowledge management), or to train new staff;
to carry out contracts including invoicing and justification of work performed (e.g. with timesheets and progress reports);
to manage IT activities with the aim of information security (including service availability), and to detect and handle threats, vulnerabilities, risks, and incidents;
to manage employment contracts, to ensure workplace safety, and to manage application information;
to demonstrate consistency of our accounting system to tax authorities and interested parties;
to perform forensic analysis and propose effective reactions to security events, to detect frauds and vulnerabilities, to understand malware and malware producers, and to share this knowledge with other security experts fighting against cybercrime;
trace the validity of our reports and advice for justifying professionalism.
To apply your rights for access, correction, reporting misuse, or withdrawing consent, please send an email to dpo@itrust.lu.
Strictly Necessary Cookies
Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.
moove_gdpr_popup
_icl_visitor_lang_js
wpml_browser_redirect_tes
We use the following third party services:
Google Maps is used on the contact page of our website.
Google reCAPTCHA is used to protect our forms.
If you disable this cookie, we will not be able to save your preferences. This means that every time you visit this website you will need to enable or disable cookies again.
Statistics
This website uses the following additional cookies from matomo.itrust.lu:
_pk_id.*
_pk_ses.*
Please enable Strictly Necessary Cookies first so that we can save your preferences!
On 11 October 2019, ILNAS, in collaboration with the University of Luxembourg (Uni.lu), organized an information session to celebrate the 50th World Standardization Day.
This event provided participants with an overview of the normative developments carried out within the framework of the national normative strategy 2010-2020 and the normative perspectives for the next decade.
The award ceremony for the "National Standards Delegate" trophy was then held. This year, Dr. Jean-Philippe Humbert had the honor of awarding this prize to Dr. Carlo Harpes, Managing Director at itrust consulting Sàrl for his important contribution to technical standardization in the Grand Duchy of Luxembourg. Among other things, he represented Luxembourg in various plenary meetings of European and international organizations, led the creation of Luxembourg commentaries and was editor of normative documents.
At the occasion of Europe’s Day, itrust consulting would like to thank the European Union, pointing out that 70 % of recruited employees since its foundation in 2007, are EU citizens, excluding the Luxembourgish citizens. Over the years itrust consulting has benefited significantly from the European Research & Development programs (FP7, H2020, ESA): itrust’s participation in Liveline, LASP, MICIE, SPARC, CockpitCI, iGoing, TRESsPASS, bIoTope, ATENA was funded with 2 million Euros. Furthermore, a turnover of more than 4 million Euros came from our consulting services towards European institutions.
Without the European Union, our growth and quality of service would not have been possible.
More and more companies, including small organisation and ASBLs, have demonstrated compliance to GDPR . This is far easier to achieve than generally thought.
itrust consulting has recently updated its service offer:
GDPR templates: € 100 per language version to be filled in by yourself;
A tailored 'privacy statement for ASBL' for fixed price of € 100: Send us your logo, statutes, website, and contact data. We will call you for a discussion on your current practices such as enrolment process, use of pictures of events… after which we will send a draft privacy declaration to be published on your website after review and addition of specific aspects;
An introduction to GDPR: 1-day training at € 500 per participant (incl. licence to use the GDPR templates);
Specialized GDPR training: 2 days on 'Foundations of the GDPR' (incl. exam) + 3 days on the role of DPO (incl. exam);
GDPR support services: pay per day;
DPOaaS: typically 2-5 days per year external support as Data Protection Officer.
In 2017, Richard Thaler and Cass Sunstein, the founding fathers of 'nudge theory', received the Nobel prize in Economics. The essentials of nudge theory can be summed up in a few bullet points:
nudges are tiny hints or changes which suggest that one follow a certain direction, but leave all of one’s options open;
a default option is a very powerful nudge, as it requires one to actively object to it to choose a different path;
states and other large institutions can use nudges to improve whole societies.
The main New Year’s resolution of itrust consulting for 2019 is to incorporate nudging to the benefit of our customers’ security needs.
The main issue is that people decide emotionally without rationally considering security. Efforts to improve security take attention and resources away from their core business. Moreover, people have a strong tendency to reject constraints and authorities, as these give them the impression that they have lost the power to decide. Nudging rests on the idea that most decisions are actually taken unconsciously.
'Nudging for security' means therefore to prepare the environment so that people unconsciously, but freely, choose the right option for themselves and their security. A nice example of this are the privacy-by-default requirements of the GDPR. It is now up to us to come up with - and implement - others for our customers.
itrust consulting and the University of Luxembourg jointly organized and hosted a successful public workshop on 18 October, 2018, focusing on the H2020 ATENA project (https://www.atena-h2020.eu/), the topic of which is Cybersecurity for Critical Infrastructures (CIs).
The purpose of ATENA is to build a suite of integrated tools to help CI operators manage and respond to cyberattacks in near-real-time so as to maintain the necessary quality of service of such infrastructures.
Please use the link below to read the full press release text.
Traditionally, itrust consulting continued its sponsorship for ‘HACK.LU 2018’ (16.-18/10), where our IT Security expert Rémi Chipaux presented in the session ‘Unpacking for Dummies’ malware packing mechanisms and counter strategies. Additionally, for a consecutive year, we sponsored ‘BSides Luxembourg 2018’ (19/10), result of our excellent professional relationship.
itrust consulting successfully passed its ISO/IEC 27001 surveillance audit performed by Certi-Trust
Europe, confirming that information security is managed according to the state-of-the art industry
standard.
The challenge during the recent year was to become GDPR-ready, while giving priority to our
customer needs versus our internal compliance process.
Please use the link below to read the full press release text.
A new cybersecurity for interdependent Critical Infrastructures
Under the patronage of the Minister of the Economy and Foreign Trade Étienne Schneider
Targeted at managers willing to use innovative cybersecurity techniques to protect their critical assets, mainly critical infrastructure such as electricity, gas, water distribution system or transport systems, but also other critical ICT systems.
When: Thursday – October 18, 2018, 9:00-17:30
Organized by: the University of Luxembourg in partnership with itrust consulting sàrl
Location: Maison des Arts et des Étudiants (MAE), 6, avenue de la Fonte, L-4364 Esch-zur-Alzette
Agenda (reduced): 09:00 – 09:30 Welcome and Registration 09:30 – 11:00 Security of the Grid and the ATENA Approach 11:15 – 13:00 ATENA innovations: the theoretical approach 14:00 – 15:10 ATENA innovations: the practical approach 15:10 – 15:30 Other research projects on Critical Infrastructure Protection 15:30 – 16:30 Panel Discussion 17:00 – 21:30 Cybersecurity week