Security compliance and certifications

Validates how we manage customer data across security, availability, confidentiality, and privacy.

Demonstrates integration of security, privacy, and ongoing improvement into our daily operations.

Establishes information security controls that are specific to public cloud environments.

Establishes information security controls for protecting personally identifiable information (PII) data in public cloud environments.

Products certified under the Texas Risk and Authorization Management Program (TX-RAMP) demonstrate compliance with rigorous security standards required for Texas state agencies and public institutions.

Protects credit card data by ensuring secure storage, transmission, and handling of payment info.

Established by the German Federal Office for Information Security (BSI) to define a comprehensive set of security and compliance requirements for cloud service providers.

Protects the privacy and security of medical records and health information in the U.S. healthcare industry.

Ensures data protection and privacy for individuals in the EU and EEA, including data transfers beyond these regions.

Expands California consumer privacy rights and protections, with new enforcement through the CPPA.

Outlines safeguards for controlled unclassified information in non-federal systems.

Combines multiple standards to manage risk and ensure compliance across the healthcare industry.

Sets stricter cybersecurity rules across the EU for infrastructure and digital service providers.

The EU’s Digital Operational Resilience Act (DORA 2022/2554) regulates financial entities through contractual requirements with technology providers, including cybersecurity.

US federal law enacted to improve corporate governance and provide more transparency for investors.

Establishes technologic requirements to protect children from harmful content online.

The first piece of EU-wide legislation on cybersecurity, it provides legal measures to boost the overall level of cybersecurity in the EU.

South African data protection law designed to safeguard personal information and establishes rights for individuals to have control over their personal data.

Framework based on five core functions to manage cybersecurity risks: identify, protect, detect, respond, and recover.

The New York State Department of Financial Services (NYDFS) regulates financial institutions and services operating in New York State.

State-level legislation designed to protect Ohioans’ sensitive personal information and establishes cybersecurity standards for organizations to follow.

Data sovereignty and security solutions for organizations in Australia that have strict national or local regulatory or policy requirements

Set of best practices and cybersecurity requirements developed by the Center of Internet Security (CIS)