NEN 7510-1+A1:2020 certification and information security

What is the NEN 7510-1+A1:2020 standard?

The NEN 7510-1+A1:2020 standard is an important guideline aimed specifically at information security in the healthcare sector. The purpose of this standard is to help organizations within the healthcare sector ensure the confidentiality, integrity and availability of sensitive patient data.

Who does this standard apply to?

This standard is intended for organizations within the healthcare sector that are involved in processing and managing patient personal data. These include hospitals, general medical practices, dental practices, pharmacies, health insurance companies and other related healthcare organizations.

Features of the NEN 7510-1+A1:2020 standard

The NEN 7510-1+A1:2020 guideline provides a framework for implementing and maintaining an effective information security policy within healthcare organizations. It contains specific measures and best practices that organizations can follow to minimize the risks of data breaches and unauthorized access to patient data.

Key measures from the NEN 7510-1+A1:2020 standards set

Some of the key measures recommended in the NEN 7510-1+A1:2020 standard include:

Conducting regular risk assessments and implementing appropriate security measures based on the results.

  • Implementing strict access control policies to ensure that only authorized personnel have access to patient data.
  • Periodically testing and evaluating the effectiveness of information security measures within the organization.
  • Maintaining current procedures for reporting and handling information security incidents.
  • Regularly training and making employees aware of the importance of information security and how they can contribute to it.

These measures, along with other guidelines in the standard, provide healthcare organizations with a solid foundation for improving their information security. This allows them to comply with legal requirements.

What additional measures are needed in the 2020 update?

The 2020 update of the NEN 7510-1 standard introduces a number of important additional measures to account for new threats and developments in information security. Some of these additional measures include:

  • Strengthened encryption protocols for securely sending and receiving sensitive patient information over networks.
  • Enhanced authentication procedures to ensure that only authorized users can access patient data.
  • Stricter physical security measures to protect devices and systems on which patient information is stored.
  • Accurate logging and logging requirements to detect and track suspicious activity within information systems.


The NEN 7510-1+A1:2020 standard is essential for healthcare organizations seeking to meet stringent information security requirements. By implementing the recommended measures and best practices in this standard, healthcare organizations can ensure the confidentiality, integrity, and availability of patient data. This minimizes the risk of data breaches and unauthorized access to sensitive information.

It is critical that healthcare organizations are aware of and implement the NEN 7510-1+A1:2020 standard to ensure a high level of information security.

By doing so, they can maintain patient trust and comply with legal requirements for healthcare privacy protection.

Need help implementing NEN 7510 certification?

Need help taking steps to comply with NEN 7510 certification? ISOPlanner prevents financial and reputation damage by helping organizations comply with increasingly complex laws and regulations in an approachable way.

Start a free trial of our software or contact us, we are happy to help!