NFZ Audit

We carry out audits dedicated to healthcare (including hospitals) by Order No. 68/2022/BBIICD of the President of the National Health Fund of May 20, 2022, on financing activities to increase the security level of ICT systems of service providers.

NFZ Audit

We carry out audits dedicated to healthcare (including hospitals) by Order No. 68/2022/BBIICD of the President of the National Health Fund of May 20, 2022, on financing activities to increase the security level of ICT systems of service providers.

Obtain comprehensive services under the NFZ regulation!

The NFZ audit prepares healthcare providers, who are medical entities, to receive funding.

As part of our services, we will assess a cybersecurity maturity level in the form of a survey in the Health Protection Statistics System and a security audit following the requirements of the regulation.

We also offer a full range of services that we can provide to your organization as part of the implementation of the funding agreement.

We have experience

We have expert knowledge that we have used so far in cooperation with several dozen clients. 

We have carried out compliance audits with the requirements of:
1) Order No. 68/2022/BBIICD of the President of the National Health Fund of May 20, 2022;
2) Order No. 8/2023/BBIICD of the President of the National Health Fund of January 16, 2023;
on financing activities to raise IT security level at healthcare providers.

Information on the Ordinance for 2025 will be available soon!
Our auditors have many years of practice in conducting security audits of information systems.

In addition, they have the necessary certifications to perform the audit:
- Certified Information Systems Auditor accredited by ISACA (CISA).
- Lead Auditor ISO 27001:2017 Information Security accredited by PCA (ISMS).
- Lead Auditor ISO 27001:2023 Information Security accredited by PCA (ISMS).
- Lead Auditor ISO 22301:2019 Business Continuity (BCMS).

We have great auditors

Who is the NFZ Compliance Audit for?

Funding may be granted to healthcare providers who are medical entities, referred to in Article 4(1) of the Act of April 15, 2011, on medical activity (Journal of Laws of 2022, items 633, 655, and 974) running a hospital and having a contract for the provision of healthcare services concluded with the National Health Fund in the type of:
1) hospital treatment or
2) medical rehabilitation or
3) psychiatric care and addiction treatment or
4) medical spa treatment.

Implementation of financed activities

See the services and products we offer. We can also carry out other activities covered by the financing.

Wondering what will be best for your organization?

Contact Us!
 - we'll help.
Cybersecurity and data protection.
Penetration, social engineering and performance tests. Security audits and trainings. 
Authorized OffSec partner in Poland.
© 2024 efigo.pl

Stay safe with us.
+48 504 112 162
+48 512 669 907
Efigo Sp. z o.o.
ul. Mikołaja Kopernika 8/6
40-064 Katowice
POLAND

VAT No: PL9542760427
en_GBEN
pl_PLPL en_GBEN