Compliance

Compliance Overview

Virtustream is dedicated to providing the highest levels of compliance to protect your enterprise.

A Commitment to Compliance

A rigorous approach to information security management is core to the way we manage our facilities and operations. Cloud-delivered systems must be compliant with both regulatory standards, which encompasses global, regional, and industry-specific regulations, as well as obligations specified in service agreements. That’s why all Virtustream services have the appropriate certifications and attestations and our technical data center personnel are government security cleared.

Our service offerings have achieved important government and industry certifications and attestations, including:

SOC-Logo.jpg#asset:5393
PCI-Logo.jpg#asset:5378
FedRamp-Logo.jpg#asset:5381
IRAP-Logo.jpg#asset:5382
ITAR-Logo.jpg#asset:5384
SOC SSAE18
PCI DSS
CISPE (GDPR)
FEDRAMP
ASD (IRAP) (AUS)
ITAR/EAR
CSA-Logo.jpg#asset:5383
Hippa-Logo.jpg#asset:5386

CJIS-Logo.jpg#asset:5387


G-Cloud-Logo.jpg#asset:5391
CSA STAR
HIPAA/HITECH
CJIS
ISO 9001
ISO 22301
ISO 27001
G-CLOUD (UK)


Virtustream works closely with customers to ensure their enterprise class workloads are hosted in the right environment based on their compliance needs.

The full list of Virtustream cloud services certifications, attestations, frameworks, standards, and laws addressed includes:

Trust-Center-Security-Chart.jpg#asset:5376

Third-party assessment organization (3PAO) examination and audit reports are available to customers, under nondisclosure, that will satisfy a wide range of regional and industry specific compliance requirements.