Your trust in us is fundamental and, ensuring data security in the cloud, is a commitment that we care about at CloudFire. To offer you the best platform and the best Cloud services, we constantly dedicate efforts to keep all our environments and processes reliable and protected. For this reason, we want to answer: what does it mean for CloudFire Compliance and Safety?
Our activities are compliant with regulatory provisions, regulations, procedures and codes of conduct. The compliance of your data to ensure your security is our commitment.
We have Eliminated complexity related to infrastructure security to give you maximum peace of mind. The security of your data is a responsibility that we take seriously and that we share with you.
We have always adopted precise and reasoned procedures in the development of our services and in the management of cloud and non-cloud processes and environments. By adhering to the standards listed below, we have embarked on a path that has led us to Standardize measures and procedures related to privacy and quality. This has allowed us to improve the assessment of vulnerabilities and the related management of corrective response procedures and to certify:
UNI EN ISO 9001 It is an internationally recognized standard relating to quality management system. The main objective of this standard is to demonstrate that the behaviors and procedures adopted within CloudFire meet certain quality criteria.
ISO/IEC 27001 It is the best known standard in the world for systems of information security management (ISMS). CloudFire has obtained this certification for Cloud services, demonstrating that we have implemented a global security program related to information security control and management activities,
ISO/IEC 27017 is the reference code for organizations when selecting Cloud service information security controls. It involves the adoption of ISO/IEC 27001 standards in a Cloud computing context.
ISO/IEC 27018 It is the reference code that defines regulatory requirements related to the protection of personally identifiable information (PII) that can be applied in a risk assessment context. It also indicates the guidelines to follow for information security from a cloud provider such as CloudFire.
It's true, the data and resources activated with CloudFire services are hosted in our infrastructure. However, CloudFire isn't the only one that needs to protect your data. In fact, we are talking about shared responsibility between the Cloud Provider (CloudFire) and the customer (you) for the protection of a Cloud environment.
In general, we manage and control the components related to the Cloud infrastructure, from the host operating system and the level of virtualization to the physical security of the structures in which the service operates. By inheriting these protections from us, you will be responsible for managing the guest operating system (including updates and security patches) and other application software.
The reasons for relying on an ISO 27001, ISO 9001 and GDPR certified cloud provider such as CloudFire are different:
Are you sure you have a Partner able to evaluate and manage every vulnerability and risk and respond promptly with definite answers.
CloudFire manages and minimizes exposure to risks same as the infrastructure, reducing the likelihood of loss and compromise of data in the Cloud.
Are you sure that your confidential data is always safe and hosted in a protected and compliant environment to national and international regulations.
You can be sure that CloudFire is constantly committed to improving quality of the processes and protection of privacy for you and for all customers.
