St. Sofia Hospital declares that the main objective of the Organization’s management and staff of is to create and provide for the patients a product that corresponds to their requirements for quality and modern technological level in the field of: 

1. Clinical and laboratory diagnosis; 

2. Active treatment; 

3. Rehabilitation and recovery; 

4. Medical studies and research. 

St. Sofia Hospital continuously raises the level of patients’ satisfaction and investigates patients’ needs, requirements and suggestions, for the purpose of improving product characteristics and developing of the integrated system for quality management and information security. 

 

St. Sofia Hospital strives to not allow creating and delivering of products with deviation from the standards. Our goal is 100% fulfillment of the contract with the NHIF, protection of the interests of patients and meeting their needs. 

 

 

The Information Security Management System (ISMS) of St. Sofia Hospital includes a framework in which the objectives and principles of information security, as well as criteria for risk assessment, are clearly defined. 

 

ISMS complies with all business, legal and regulatory requirements for the processes of achieving the necessary level of trust, with contractual obligations to ensure security, and meets the strategic context for risk management within the Organization. 

 

St. Sofia Hospital declares that the main objective of the management and staff is to create trust by providing the patients, partners and interested parts a product that corresponds to their safety requirements while ensuring confidentiality, integrity and accessibility to information database, ensuring the following processes: 

1. Clinical and laboratory diagnosis; 

2. Active treatment; 

3. Rehabilitation and recovery; 

4. Medical studies and research. 

St. Sofia Hospital seeks to ensure 100% safety of information database related to the processes and products. 

 

St. Sofia Hospital clearly defines information security, its objectives, areas and levels of importance as a mechanism for providing and/or use of information. On this basis, the Organization is planning effective control mechanisms to ensure the achievement of goals. They are based on fundamental principles of information security. 

 

St. Sofia Hospital continually raises the level of information security and protects information from a wide range of threats, to ensure continuity of processes, protection of business interests and increased competitiveness, confidence and business capabilities of the Organization. 

St. Sofia Hospital continuously studies and implements the latest scientific and technical achievements in the of Information Security Management System. 

St. Sofia Hospital maintains a team of internationally recognized, highly qualified, dedicated and motivated specialists who perform on a modern professional level all tasks in ensuring information security. We strive for every employee to realize the importance of their actions and to participate actively in the process of improving the Information Security Management System. 

St. Sofia Hospital implements, maintains and improves an integrated quality and security management system according to the requirements of ISO 9001:2000; ISO 27001:2005 and other Bulgarian and international standards and norms. 

 

St. Sofia Hospital continuously studies and offers the patients the latest scientific and technical achievements in our professional field. 

 

St. Sofia Hospital maintains a team of highly qualified, dedicated and motivated specialists who solve in a timely and professional way all of the patient’s problems. We strive for every healthcare specialist to be an expert in his or her work and to realize the importance of his or her actions in order to satisfy the patients’ requirements, while ensuring legal compliance of the processes and guaranteeing the prosperity of the Organization. 

 

St. Sofia Hospital implements, maintains and improves an integrated quality and security management system according to the requirements of ISO 9001:2000; ISO 27001:2005 and other Bulgarian and international standards and norms