Certification Reports
We use global best practice to offer our Multi Cloud services.
Cloud
We use global best practice to offer our Multi Cloud services.
ISO/IEC 27001
ISO/IEC 27001 is an international standard for information security management systems (ISMS). It details frameworks for establishing, implementing, maintaining, and continually improving information security for both digital and physical documents that are vital for managing sensitive information. If the information is not stored, sorted, and categorized correctly according to its sensitivity, the risk of unwarranted information disclosure increases. This can potentially cause damage to our customers. With this accreditation, Cloud HM can assure our customers that all their sensitive data are stored, managed, and destroyed securely and correctly according to the frameworks of ISO/IEC 27001. All of your data will go through the following procedures:
1.
Classification according to level of sensitivity
2.
Securely stored according to level of sensitivity
3.
Periodic review for readiness of use according to level of sensitivity
4.
Proper destruction according to level of sensitivity
ISO/IEC 22301
ISO/IEC 22301 is an international standard for security and resiliency. It outlines frameworks for establishing business continuity management systems. Having business continuity management systems in place is vital in offering highly available infrastructure to Cloud HM's customers. The components of this standard includes assessing risk, planning risk mitigation strategies, and establishing and rehearsing standard operating procedures (SOP) for various potential risk scenarios. Possessing such certifications help guarantees that Cloud HM has the necessary plans in place in the event of unforeseeable circumstances for business continuity thereby allowing us to offer a highly available services to you. With this certification, you data and application will benefit from the following procedures outlined in this certification:
1.
Risk mitigation from unforeseeable events
2.
Annual emergency drills and rehearsals for emergency situations
3.
Highly available infrastructure for all our services
4.
Operational readiness for any types of events
ISO/IEC 20000-1
ISO/IEC 20000-1 is an international standard for service management of IT services. This certification details frameworks for establishing, implementing, maintaining, and continually improving service management system (SMS) for IT services. An SMS establishes and supports the internal management of service lifecycle helping to guarantee a quality level of service that meets international standard. This certification helps to deliver the following to you:
1.
International framework for guaranteeing Service Level Agreement (SLA)
2.
Procedure for managing and controlling suppliers to guarantee quality and efficiency
3.
International framework for delivering projects
4.
Customer satisfaction improvement and survey
ISO/IEC 27701
The Privacy Information Management System (PIMS) standard is a guideline for the effective and secure management of personal information. This standard is an extension of the ISO/IEC 27001 standard, with the addition of control processes, collection, access, disclosure, updating, transfer, and disposal of personal information. It provides a clear framework as it is based on the EU's General Data Protection Regulation (GDPR), thereby enabling efficient processes for managing and protecting personal information. It also complies with the requirements of current laws and regulations such as the Personal Data Protection Act 2019 (PDPA). The service users will receive various standardized processes, as follows:
1.
Efficient and secure protection of personal information
2.
Reduce the risk of personal information breaches
CSA STAR
The Cloud Security Alliance: CSA - Security, Trust & Assurance Registry: STAR - is a security certification specifically for Cloud service providers like Cloud HM. It details frameworks for Cloud service providers for assessing risks, setting up and monitoring defense systems, and establishing stringent information security procedures for a secured Cloud infrastructure. This certification assures that Cloud HM has the necessary procedures and systems in place for our customers' data. Your data and application will go through our strict procedures below:
1.
Risk mitigation of security threats and vulnerabilities
2.
Routine security audits
3.
Data protection
VMware Cloud Verified
We are committed to driving your organization's digital transformation by enabling you to seamlessly run, manage, connect, and secure application across private and public clouds in a common operation environment. TH VMware Cloud Verified badge provides assurance that out services are compatible with the VMware Cloud infrastructure.
Data Center
PCI DSS
Today, there is an increasing number of online banking transactions, especially at credit and debit card channels. Due to various online shops or businesses Open up more ways to pay via credit or debit card. Therefore, in order to increase the confidence of customers and payment gateway service providers, payment security has to be taken into account, which PCI DSS standard is the security standard of payment card information, will help control the security of payment cardholder data. To maintain, process, transmit and receive information related to credit card or debit card safely. It also reduces the risk of leakage. Counterfeit payment card data and can be sure that all devices within the data center are completely secure as standard.
AICPA SOC 2
The System Organization Controls (SOC) 2 report is an independent third party audit report on the control procedures within a data center. It analyzes and concludes on the understanding of the control and risk assessment associated from an external point of view. Our customers can learn and evaluate on the security, availability, processing integrity, confidentiality and privacy controls that are in place in our data center.
Get valuable advice for your Multi Cloud journey.
We're the Multi Cloud experts that are on your side
- helping you to use the Multi Cloud right.
Services
Multi Cloud
Use Cases
