Nemetschek Trust Center

Information security is of fundamental importance to us. It plays a crucial role in fostering trust -based collaboration with our business partners and all relevant stakeholders, while also supporting the long-term success of our company. All employees are fully aware of the necessity to perform their daily tasks in alignment with information security principles. To support these efforts, the Nemetschek Group has established an Information Security Management System (ISMS) certified according to ISO/IEC 27001:2022 which includes the following security principles:

Management Responsibility:
At Nemetschek, our Executive Board holds ultimate responsibility for information security across all our companies and demonstrates strong commitment to it. The Board fully empowers and supports our Corporate Information Security Officer in implementing and maintaining robust information security measures. We actively encourage all employees to contribute to safeguarding our data and upholding the highest standards of information security.

Confidentiality:
We protect sensitive information from unauthorized access or disclosure.

Integrity:
We ensure data remains accurate, complete, and unaltered throughout its lifecycle.

Availability:
We make sure that systems and information are accessible when needed.

Continuous Improvement:
We constantly refine our processes and systems to enhance security and efficiency.

Dealing with Deviations:
We continuously identify, address, and learn from any deviations. We analyze deviations to improve the ISMS and ensure it stays up to date with the latest IT security trends and technologies.

Business Continuity Management (BCM):
Our Business Continuity Management ensures that critical operations remain resilient and recoverable in the face of disruptions.

These essential principles form the basis of our approach to information security.
Building upon this foundation, our strategy focuses on the following security objectives that guide our efforts and investments:

Information Security Management

As part of the ISO/IEC 27001:2022 certified ISMS, Nemetschek has established a comprehensive Information Security Control System (ISCS). This system integrates customer requirements, regulatory standards, and industry frameworks, ensuring the implementation of robust processes to safeguard company assets and continuously enhance our security posture.

Cyber Defense

We proactively defend against evolving threats with advanced monitoring, threat intelligence, and incident response capabilities with state-of-the-art technology and our dedicated Security Operations Center (SOC).

Secure Software Developement

Security is embedded in every step of our software development lifecycle, ensuring resilient and trustworthy solutions for the AEC/O industry.

Overview of Certifications

ISO/IEC 27001:2022

Development, implementation, and maintenance of software solutions across the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Munich, Germany

Central functions, development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Hyderabad, India

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Munich, Germany

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Hasselt, Belgium

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Stuttgart, Germany

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Bratislava, Slovakia

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Urstein, Austria

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Graz, Austria

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Puteaux, France

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Lincoln, NE, USA

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Pasadena, CA, USA

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Dallas, TX, USA

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Kista, Sweden

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Ratingen, Germany

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Oslo, Norway

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Budapest, Hungary

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Bremen, Germany

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Elixhausen, Austria

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Lohne, Germany

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Foothill Ranch, CA, USA

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Helsinki, Finland

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Antwerp, Belgium

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

ISO/IEC 27001:2022

Columbia, MD, USA

Development, implementation, and maintenance of software solutions within the Architecture, Engineering, Construction, and Operations (AEC/O) lifecycle.

Cyber and information security

The Nemetschek Group pursues a comprehensive security strategy to reduce cyber and information security risks and ensure the highest security standards within the Group.

Learn more

Compliance

Our aim is to work sustainably with our employees, partners and customers in all our operational activities. Compliance, fair business practices, human rights and the avoidance of discrimination are of great importance to us.

Learn more

Data protection

Handling your personal data responsibly is a top priority for us. We rely on modern security standards and transparent processes to protect your data in the best possible way. You can read more details about how we handle your data here.

Learn more

Pages

News

Nemetschek Trust Center

These essential principles form the basis of our approach to information security.
Building upon this foundation, our strategy focuses on the following security objectives that guide our efforts and investments:

Overview of Certifications

Related Topics

Pages

News

Nemetschek Trust Center

These essential principles form the basis of our approach to information security. Building upon this foundation, our strategy focuses on the following security objectives that guide our efforts and investments:

Overview of Certifications

Related Topics

These essential principles form the basis of our approach to information security.
Building upon this foundation, our strategy focuses on the following security objectives that guide our efforts and investments: