Quality management & security
Quality management is about defining and regulating processes within a company. The CODESYS Group gives this topic high priority. The Group has been certified in accordance with ISO 9001:2015 as early as 2005, and we not only comply with this standard on paper, we live it in our daily work. We have defined our core processes according to meaningful standards that go far beyond what is required by the standard.
What's more, we are committed to improving our work day by day. That's why all employees are invited to participate in our continuous improvement process. Quite simply, whoever has a good idea about how we can do something better is encouraged to report it informally. A committee discusses each suggestion. This agile quality management approach helps us keep the ball rolling – and stay close to our CODESYS team.
For more than 30 years, our customers have relied on our high quality. And, of course, our employees, who work in a transparent environment according to carefully defined rules, leaving them free to develop creative ideas – from which, in turn, our customers benefit.
Security for products, information, and data
Security is important to the CODESYS Group in two respects. On the one hand, it is about securing all CODESYS products against external attacks. Secondly, we take all
necessary measures to ensure optimum information security.
Security in CODESYS: protection against external attacks
CODESYS product development and all security processes are subject to the requirements of the IEC 62443 security standard. Processes for dealing with security
vulnerabilities have been established and are practiced.
To learn which measures and procedures we apply in the IEC 61131-3 development system, please click here.
The security functions integrated in the CODESYS products are permanently maintained and expanded. All CODESYS software components are regularly checked for potential security vulnerabilities. In addition, the CODESYS Group is committed to fixing verified security vulnerabilities within a reasonable period of time. In our Security Whitepaper (PDF) you will find all important information about CODESYS Security.
Contribute to improving the security of CODESYS: Report security vulnerabilities!
Please find all information about security here. This includes information on what to do if you discover security vulnerabilities. And, of course, how we at the CODESYS Group handle your report.
Information security in accordance with ISO27001:2022 / participation in the TISAX process
The German companies of the CODESYS Group are certified according to DIN EN ISO/IEC 27001. This means we have set the course for optimized information security. What this means for our customers around the world: The CODESYS Group not only takes all measures to protect your data, but also prepares itself as best as possible against external attacks and unplanned interruptions in operations by implementing appropriate processes.
In addition, CODESYS GmbH participates in TISAX (Trusted Information Security Assessment Exchange) by supporting the joint acceptance of information security audits in the automotive industry on behalf of the German Association of the Automotive Industry (VDA).
TISAX assessments are carried out by TISAX assessment service providers who prove their qualifications at regular intervals. TISAX and TISAX assessment results are not intended for the general public.
The CODESYS Group attaches great importance to the confidentiality, availability, and integrity of information. It has therefore taken extensive measures to protect sensitive and/or confidential information and follows the information security questionnaire of the German Association of the Automotive Industry (VDA ISA).
The audit of CODESYS GmbH was carried out by the audit service provider TÜV Süd. The result is available exclusively via the ENX portal: https://portal.enx.com/en-us/TISAX/tisaxassessmentresults.