SwissSign: recommendation on BIA/BCP review

SwissSign AG received an audit recommendation to improve the synchronization of their Business Impact Analysis (BIA) and Business Continuity Plan (BCP) reviews. The audit highlighted that while both documents were reviewed periodically, their cycles were not formally aligned, posing a risk of divergence. In response, SwissSign has synchronized the review periodicity and updated their internal procedures accordingly. All action items related to this recommendation have been completed, and the CA is committed to maintaining aligned governance documentation as per ETSI EN 319 401.

1. 2025-09-12 Audit report containing recommendation published
2. 2026-04-27 Action item to synchronize review periodicity completed