AICPA SOC 2
Les rapports SOC (contrôle des systèmes et de l'organisation) de Netskope sont des rapports d'examen indépendants établis par des tiers qui expliquent les principaux mécanismes de contrôle et objectifs établis par Netskope en matière de conformité. Le but de ces rapports est de vous aider, vous et vos auditeurs, à comprendre les contrôles mis en place par Netskope pour garantir le bon fonctionnement de ses services dans le respect de la réglementation en vigueur. En savoir plus.
To request for a copy of our SOC 2 Report, please contact your account representative.
FedRAMP
FedRAMP is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. The program enables government agencies to adapt from old, insecure legacy IT to mission-enabling, secure, and cost-effective cloud-based IT.
Click here to learn more about Netskope’s Authorization.
Center for Internet Assurance (CIS)
CIS is an independent, nonprofit organization with a mission to create confidence in the connected world. The Center for Internet Security, Inc. (CIS®) makes the connected world a safer place for people, businesses, and governments through their core competencies of collaboration and innovation. CIS is a community-driven nonprofit, responsible for the CIS Controls® and CIS Benchmarks™, globally recognized best practices for securing IT systems and data.
Netskope CSPM has received CIS Benchmark Certification, specifically:
- CIS Microsoft Azure Foundations Benchmark v1.3.0 – Server Level 1 & 2. Click here to view our CIS Benchmark Certification for Azure
- CIS Amazon Web Services Foundations Benchmark v1.4.0. Level 1 & 2 – Server. Click here to view our CIS Benchmark Certification for AWS
ISO 27001 Certification
The International Organization for Standardization 27001 Standard (ISO 27001) is an information security standard that ensures office sites, development centers, support centers and data centers are securely managed. These certifications run for 3 years (renewal audits) and have annual touch point audits (surveillance audits).
To request the ISO 27001 certification, please contact your account representative.
ISO 27017 Certification
ISO/IEC 27017 is a security standard developed for cloud service providers and users to make a safer cloud-based environment and reduce the risk of security problems.
To request the ISO 27017 certification, please contact your account representative.
ISO 27018 Certification
The International Organization for Standardization 27018 Standard (ISO 27018) covers privacy protections for the processing of personal information by cloud service providers.
To request the ISO 27018 certification, please contact your account representative.
CSA STAR
The CSA Security, Trust and Assurance Registry (STAR) encompasses the key principles of transparency, rigorous auditing, harmonization of standards, with continuous monitoring. STAR consists of three levels of assurance, which currently cover four unique offerings all based upon a succinct yet comprehensive list of cloud-centric control objectives in the CSA’s Cloud Controls Matrix (CCM). CCM is the only meta-framework of cloud-specific security controls, mapped to leading standards, best practices and regulations. CCM provides organizations with the needed structure, detail and clarity relating to information security tailored to cloud computing.
Click here to view our CSA STAR Level II Certification.
UK Cyber Essentials
Cyber Essentials is a United Kingdom government information assurance scheme that is operated by the United Kingdom National Cyber Security Centre (NCSC). It encourages organisations to adopt good practice in information security. Cyber Essentials also includes an assurance framework and a simple set of security controls to protect information from threats coming from the internet.
To request the UK Cyber Essentials certification, please contact your account representative.
Privacy Shield
Dans le cadre de certains services pour lesquels nous agissons en tant que sous-traitant de données, nous sommes certifiés au titre du Bouclier de protection des données UE-États-Unis. Pour en savoir plus sur le champ d'application de cette certification, cliquez ici.
The EU-U.S. Privacy Shield Framework was designed by the U.S. Department of Commerce and European Commission to provide companies on both sides of the Atlantic with a mechanism to comply with EU data protection requirements when transferring personal data from the European Union to the United States in support of transatlantic commerce.
Netskope a reçu le sceau de confidentialité TRUSTe. Pour en savoir plus sur les sceaux de certification TRUSTe, cliquez ici.
Cloud Computing Compliance Controls Catalog (C5)
Cloud Computing Compliance Controls Catalog (C5) is a German Government-backed attestation scheme introduced in Germany by the Federal Office for Information Security (BSI) to help organizations demonstrate operational security against common cyber-attacks within the context of the German Government’s “Security Recommendations for Cloud Providers”.
To request the C5 copy please contact your account representative.
California Consumer Privacy Act
Netskope aide ses clients à se conformer aux exigences de traitement prévues par le California Consumer Privacy Act de 2018 (le « CCPA »). À des fins de confirmation des aspects du CCPA applicables dans le cadre de l'utilisation de ses Services par le Client, Netskope a créé cette déclaration de conformité. Cette déclaration vient compléter la politique de confidentialité de Netskope.
Data Processing Addendum
View Netskope’s Customer Data Processing Addendum (DPA)
Afin de signer l'exemplaire client de l'accord de protection des données (DPA) de Netskope, veuillez suivre les instructions en page 1 du document. Veuillez renvoyer l'exemplaire signé à [email protected].
Pour toute question ou pour demander une copie de la loi sur la protection des données dans un autre format, veuillez nous contacter à l'adresse [email protected].
