A Merak archive box is removed from the shelves by an employee


Legal and regulatory compliance



Payment Card Industry Data Security Standard

The Payment Card Industry Data Security Standard (PCI-DSS) is a security standard for businesses or organisations that process, store or transmit payment data. This standard is designed to ensure the security of sensitive credit card data and protect against potential data breaches.
Companies that process card data must undergo regular audits to verify compliance with the PCI DSS standard. This is also the case for Merak, as our website also allows online ordering.

A close-up of a hand holding a blue bank card

Backup of card data

Regular audits


Protection against misuse of data



A man in costume sits behind a computer screen

Why a penetration test (pen test)?

We regularly have our IT systems and applications tested to detect vulnerabilities through which cybercriminals could penetrate. Just like a real hacker, an "ethical hacker" or "white hat hacker" attempts to access systems and secure data. This is important to highlight risks and vulnerabilities in the IT environment and to be able to take targeted action to improve security.

Checking for vulnerabilities

To improve security measures

In controlled circumstances

Carried out by an ethical hacker



Good laboratory practice

Merak's infrastructure and working methods for preserving pharmaceutical and laboratory records comply with OECD Good Laboratory Practice (GLP) rules, as well as those of the MTBF, Vlarem I and II and Codex. You can rest assured that we will handle your laboratory archives correctly and meticulously.
By implementing documented procedures and protocols, we ensure the integrity and traceability of samples. We strictly adhere to all these procedures to ensure that all steps in the preservation process are carried out consistently and that the quality of the samples is maintained during the preservation period.

A liquid is put into test tubes with a pipette