OVHcloud Expands ISO 27001 & ISO 27701 Certifications To All Its Cloud Offerings

OVHcloud announced today that it has achieved new certifications in information security and data privacy, marking a new phase in its broader certification policy and commitment to customers.  

With the newly obtained ISO/IEC 27001 and ISO/IEC 27701 for most of its cloud solutions, OVHcloud has further consolidated its arsenal in order to strengthen customer trust in the security of its infrastructure. The scope of certification covers the following products: 

  • Public Cloud: Compute, Storage (Block, Object, Archive, Snapshot, Instance Backup), Managed Kubernetes® Service, Cloud Databases, Data Processing, ML Serving et AI Training. 
  • Hosted Private Cloud Premier, Managed Bare Metal, Bare Metal Servers, NAS, Backup storage, Logs Data Platform and Trusted Exchange. 

For these products and all supporting information systems, OVHcloud has implemented an Information Security Management System (ISMS) and Personal Information Management Systems (PIMS) evaluated by a third-party auditor as part of an in-depth audit. This audit resulted in the obtaining of: 

  • Certification according to the ISO/IEC 27001 standard supplemented by the requirements of ISO/IEC 27017, specific to cloud services security and ISO/IEC 27018 relating to the requirements of personal data protection. This certification enables all organizations and their DevOps teams to deploy services in OVHcloud’s environment in accordance with the highest security standards. 
  • Certification according to the ISO/IEC 27701 standard, to explain how the personal data hosted by its customers on OVHcloud solutions are specifically protected. This recent certification (2019), which still involves few players, is based on a global standard that reflects most of the requirements of the General Regulation on Data Protection (GDPR) in a standardised manner. 

According to the IDC FutureScape study “Worldwide Cloud 2021 Predictions”, over 80% of enterprises evaluating cloud services for privacy-sensitive workloads will mandate the protection of data sovereignty and the ability to control the corresponding processes across the geographies concerned.  

OVHcloud has been committed for many years to constantly improving the security of its information systems. In 2013, the European cloud leader achieved ISO 27001 certification for its Hosted Private Cloud solution and then in 2019 for its Bare Metal Cloud servers.  

XMCO supported this approach as internal auditor of OVHcloud’s management system. The external certification audit was conducted by the Laboratoire National de Métrologie et d’Essais (LNE).

For more about OVHcloud’s compliance and certification policy:  

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: