DRACOON cloud status:

Now available:  Two-step authenticationLearn more

Articles in this section

DRACOON Security Certifications

  • Updated
Follow

Cloud computing compliance criteria catalogue (C5, Type 2) of the BSI

Audit report from October 25, 2022

In the C5, the BSI specifies which obligations and requirements cloud providers must meet with regard to information security. The testing may only be carried out by an auditor as an independent third party. DRACOON was audited in this context by HKKG, a prestigious legal firm in Germany, and previously by PwC, the leading auditing and consulting firm in Germany.

To get a copy of the report, please contact your sales representative at DRACOON.

 

ISO/IEC 27001:2013 Certificate

Awarded in 21.08.2020

ISO/IEC 27001 is the leading international standard for information security management systems.

Information about DRACOON's certification

   Download

 

IDW PS 951 (Type 2)

Audit report from October 25, 2022

IDW PS 951 (Type 2) includes the audit of the internal control system at the service company (here: DRACOON) for functions outsourced to the service company. In this context, DRACOON was audited by HKKG, a prestigious Legal firm in Germany, with a reporting date of October 25, 2022 and previously by PwC, Germany's leading auditing and consulting firm, with a reporting date of 13 October, 2021. The audit was conducted on the basis of the following criteria:

  • Functionalities of the DRACOON solution
  • Encryption of the information
  • Architecture and system components
  • Methods, principles, and concepts for development and operation
  • Technical and organizational measures for the provision of the cloud service based on the BSI C5 requirement areas
  • Control objectives of the service-related internal control system

To get a copy of the report, please contact your sales representative at DRACOON.

 

  Planned certifications for DRACOON

 

ISO 27017:2015 (Information security for cloud services)

External audit performed by TÜV Rheinland in August 2022. Now waiting for final accreditation.

ISO 27018:2019 (protection of personally identifiable information (PII) in public clouds acting as PII processors)

External audit performed by TÜV Rheinland in August 2022. Now waiting for final accreditation.

Related articles

Comments

0 comments

Article is closed for comments.