How we support CBTL:

How CBTL built their ISMS and got the certification on TISAX^® with DataGuard

CBTL and the EVOLUTION³ authoring tool were initially certified to TISAX^® version 4.1. At the beginning of 2024, the company carried out the required recertification to TISAX^® version 5.1 and, with the expertise and advice of DataGuard, successfully achieved the highest security level of certification.

As a highly innovative company, CBTL has long been aware that information security is a top priority. It‘s one of the company's central unique selling points and the software made in Germany is the preferred solution for the company’s partners with strict security requirements. For this reason, both CBTL itself and the flagship product EVOLUTION³ are the only authoring tools on the market to be TISAX^®-certified. This double certification covers information security, data protection and company processes, as well as product integrity with fully secured programming processes.

Why CBTL needed TISAX^®

As a platform for digital and interactive learning, the software handles a large amount of sensitive information that demands special protection. This applies both to the learning content,the behaviour of the learners and their journey through the learning path. Protecting this data is a must for preserving the integrity of the learning program. CBTL recognizes its responsibility and places data security and integrity at the central focus.

Some of CBTL's long-term customers are large German automotive companies that require their suppliers to be TISAX^® certified. The certification enables CBTL to demonstrate its commitment to information security and win new customers in other industries. This is because the TISAX security standard is now recognized by many companies and helps with many security issues.

Making information security assessments easier

Tackling an information security assessment can be challenging without the appropriate knowledge and experience. The process of conducting two parallel certifications for the company CBTL and the authoring tool EVOLUTION³, is greatly simplified with the right support. DataGuard provided CBTL with the necessary assessment advice and helped develop an efficient routine successfully maintained during recertification.

The highest level of certification for the highest level of security

CBTL achieved level 3, the highest level assessment on TISAX^® certification in the area of information security and data protection. This means that CBTL and the authoring tool not only meet but exceed the requirements, ensuring the security of processes and the integrity of data. Customers and partners can rest assured that all information is handled with care and diligence, demonstrating CBTL's strong commitment to security.

CBTL values DataGuard's blend of tech and human expertise

• Long-standing relationship and trust: The established relationship between CBTL and DataGuard fosters open communication and reliable support.
• Quality consulting: DataGuard’s consultants consistently deliver valuable expertise.
• Overcoming challenges: During the audit for certification on TISAX^®, a DataGuard consultant's professional approach played a key role in achieving a successful outcome.

“The support provided by DataGuard as a competent partner and external Information Security Officer before and during our assessment on TISAX^® was extremely helpful, especially in relation to the requirements of level 3 of compliance to TISAX^®.”

Beyond certifications: CBTL sees security as an ongoing strategy

CBTL is continuously working to improve information security and is already preparing for the next cross-industry certification. Security is not a one-off for CBTL, it’ is a core promise to customers, especially with the new version of TISAX^®, and CBTL always strives to always be one step ahead. For CBTL, security means having the right policies, processes and measures in place and ensuring that these are part of daily operations. DataGuard helps by offering consulting and regular check-ins to support the implementation of the new standards, processes, and policies.