Cloudnosys’s Security Information team, Legal department, and Internal Compliance/Audit department all work together to ensure that industry best security practices are met. Cloudnosys’s Software-as-a-Service (SaaS) environment follows stringent guidelines to protect the confidentiality, integrity, privacy, and availability of your data.

Compliance and Certifications

We also work with independent auditors and penetration testers to validate that Cloudnosys has the appropriate security controls in place to protect customer data entrusted to us.

SOC2 Type II Report and SOC3 Report​

System and Organization Control (SOC) Reports are self examination reports that demonstrate how Cloudnosys achieves key compliance controls and objectives. The purpose of these reports is to help you and your auditors understand the Cloudnosys controls established to support operations and compliance. Cloudnosys cloud services have been successfully reviwed in accordance with AT 101 and the Trust Services Principles for design and operational security. To learn more about the AICPA and the SOC standards, see the following link: http://www.aicpa.org/soc4so

For a copy of our self-examination SOC-2 and SOC3 reports, please request from your Account Team.

ISO27001

Cloudnosys follows ISO27001 guidelines and is aligned with all associated requirements for establishing, implementing, maintaining and continually improving an Information Security Management System (ISMS). This alignment ensures that Cloudnosys cloud services (AWS, GCP) have the requisite and appropriate security controls and management program in place as defined in the ISO/IEC 27001 standard.

FedRAMP Certification

Cloudnosys is follows FedRamp requirements however at this time, it does not have under the Joint Authorization Board (JAB) Authorization to Operate (ATO), to learn more please request information via your Account Team.

Cloud Security Alliance

Our Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) response details how Cloudnosys cloud services fulfill the security, privacy, compliance, and risk management requirements defined in the CSA CCM version 3.0.1. Request a copy from your Account Team.

General Data Protect Requirements (EUGDPR)

Cloudnosys meets the compliance requirements for the EU GDPR. Four years after the overhaul of European data protection laws began, the final text of the new General Data Protection Regulation (EU GDPR) was approved in Spring 2016 and the new rules came into effect on May 2018. The rights of EU citizens to control their personal details is respected by Cloudnosys.

Learn more about the EUGDPR

California Consumer Privacy Act (CCPA)

The California Consumer Privacy Act (CCPA), enacted in 2018, creates new consumer rights relating to the access to, deletion of, and sharing of personal information that is collected by businesses. Cloudnosys complies with the California Consumer Privacy Act. Cloudnosys provides additional rights to California Consumers which are fully set out in our privacy policy and in the agreements we put in place with our Vendors and our Customers. The rights of California Consumers to control their personal details is respected by Cloudnosys.

Learn more about the CCPA

EU-US Privacy Shield

Cloudnosys complies with the EU-U.S. Privacy Shield Framework as set forth in the US Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States.

ITIL Alignment

Cloudnosys adheres to ITIL principles and practices for managing and supporting our SaaS environment. Leveraging process automation and other ITIL best practices, we are well-positioned to enforce IT service management for our cloud services and customers.

Learn more about ITIL-ISO 20000

Leverage the Power of CloudEye Security

Cloudnosys-Logo

Cloudnosys platform delivers security, compliance, and DevOps automation. Continually scan your entire AWS, Azure & GCP services for security and compliance violations for Network Security, IAM Policies, VPC, S3, Cloudtrail etc. Provides DevOps automation and policy driven guided remediation for AWS, Azure & GCP. Meet PCI, HIPAA, NIST, ISO27001, SOC2, FISMA, AWS CIS Benchmark compliance quickly.

Company

Head Office:

 

‌   +1 (404) 692-5787

   205 Market Pl Suite 200, Roswell, GA 30075,

‌   [email protected]