tencent cloud

Feedback

Security Compliance Certification

Last updated: 2022-03-17 11:01:55

Compliance is the foundation for the development of Tencent Cloud IM, which meets the compliance requirements of different countries and industries. In addition to ensuring the security, compliance, availability, confidentiality, and privacy of the services it provides, IM also provides relevant support for its customers to meet their and their customers' compliance requirements, reduce repeated investment in audit work, and improve auditing and management efficiency.

IM has passed SOC 1, SOC 2, and SOC 3 audits, meets the requirements of China's Cybersecurity Classified Protection 2.0 (Level 3), and is certified to ISO 9001, ISO 20000, ISO 27001, ISO 27017, ISO 27018, ISO 27701, ISO 29151, CSA STAR, NIST CSF, BS 10012, and K-ISMS.

SOC 1 Type II Report

Based on AT-C Section 320 in AICPA's Statement on Standards for Attestation Engagements No. 18 (SSAE No. 18), this report is issued for the control environment of Tencent Cloud's service system.

SOC 2 Type II Report

Based on AT-C Section 205 in AICPA's SSAE No. 18 and TSP Section 100 (2017 version), this report is issued for the security, availability, and confidentiality of Tencent Cloud's service system.

SOC 3 Type II Report

Based on AT-C Section 205 in AICPA's SSAE No. 18 and TSP Section 100 (2017 version), this report is issued for the security, availability, and confidentiality of Tencent Cloud's service system.

ISO 9001 Quality Management System Certification

Tencent Cloud is the first cloud computing service provider in China to acquire certification from both ISO9001 CNAS (China National Accreditation Service for Conformity Assessment) and ANAB (ANSI-ASQ National Accreditation Board). It implements effective quality control processes to deliver quality cloud services.

ISO 20000 IT Service Management System Certification

Tencent Cloud is the first cloud computing service provider in China to acquire certification from ISO 20000-1:2018. It has established and strictly followed a standard IT service management process.

ISO 27001 Information Security Management System Certification

ISO/IEC 27001:2015 is a supplement to ISO/IEC 27002:2013. This certification proves that Tencent Cloud has effectively designed and implemented cloud computing information security control.

ISO 27017 Guidelines for Cloud Service Information Security Control Implementation

ISO/IEC 27017:2015 is a supplement to ISO/IEC 27002:2013. This certification proves that Tencent Cloud has effectively designed and implemented cloud computing information security control.

ISO 27018 Certification for Personal Information Protection on Public Cloud

Tencent Cloud is committed to protecting the personal information of each customer, building a sound personal information management system, and using various technical means to protect users' personal information.

ISO 27701 Personal Information Management System Standard

Tencent Cloud is the first cloud service provider to acquire the ISO/IEC 27701 certification worldwide. It has established and implemented a personal information management system, and has the capability of continuous improvement.

ISO 29151 Code of Practice for Personally Identifiable Information Protection

Tencent Cloud provides an appropriate information security risk management environment for the protection of personally identifiable information, while meeting industry best practices and being capable of continuous improvement.

ISO 22301 Business Continuity Management System Certification

Tencent Cloud is one of the first cloud computing service providers certified by ISO 22301 in China. It has established a sound business continuity plan and conducted regular drills to improve the stability of its cloud platform.

CSA STAR Cloud Security Management System Certification

CSA STAR is an international certification for cloud security features. Tencent Cloud has passed the STAR certification at the Gold level, strengthening its control of cloud security technology.

NIST Cybersecurity Framework

NIST cybersecurity framework (CSF) is developed based on Executive Order 13636 "Improving Critical Infrastructure Cybersecurity" by National Institute of Standards and Technology (NIST). The framework focuses on using business drivers to guide cybersecurity activities.

K-ISMS Certification

Tencent Cloud has achieved the Korean Information Security Protection Management System (K-ISMS) certification, proving that the information security management systems and capabilities developed by Tencent Cloud are in compliance with applicable Korean laws and standards.

BS 10012

British Standard for Personal Information Management Systems released by the British Standards Institute (BSI).

Contact Us

Contact our sales team or business advisors to help your business.

Technical Support

Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

7x24 Phone Support