The customer data handled byInvestment Research is confidential, and well-managed information securitymatters are vital to our services. Investment Research has invested ininformation security and the reliable recovery of systems in problem situationsfor several years.
During 2024, Investment Researchunderwent an IT audit process conducted by an external party, and the resultswere good. The audit results confirmed our own view that our systematicinvestments in information security have been correct.
In January 2025, the EU's DigitalOperational Resiliency Act (DORA) will come into effect, affecting some ofInvestment Research's clients. Throughout this year, we have gone through theDORA process, carefully reviewing and documenting information security mattersregarding IT systems, existing processes, and staff training. InvestmentResearch has a functional risk management process that utilizes both the STRIDEthreat modeling and the ISO 31000 standard.
Investment Research is ready forDORA and committed to complying with the regulation in the future. We have alsocommissioned a separate DORA audit conducted by an external party.
Regardless of whether InvestmentResearch's investor client is covered by the DORA regulation or not, ourmessage to all our clients is that Investment Research is one of the mostreliable players in the financial sector in terms of information security andpreparedness for disruptions.
