ISO 9001 certified
ISO 9001:2015 outlines requirements for organizations to establish systems that drive continuous improvement and customer satisfaction. Its emphasis on risk-based thinking helps organizations optimize performance, enhance product quality, and maintain compliance with industry regulations.
|
 |
 |
ISO 14001 certified
ISO 14001:2015 outlines requirements for organizations to manage their environmental responsibilities and reduce their ecological footprint. Its focus on risk management and continual improvement helps organizations proactively address environmental challenges and adapt to regulatory changes.
|
 |
 |
ISO 27001:2022 certified
ISO 27001:2022 outlines requirements for information security, cybersecurity, and privacy protection. Its ICT business continuity requirements help organizations prepare for, respond to and recover from disruptive incidents.
|
 |
 |
EU data sovereignty
Cleura will never, by its own mandate, transfer data outside of the data center region where the data was first provisioned by the user.
|
 |
 |
Dedicated logical access
Compliant Cloud logical access goes through a dedicated secure entry gateway which only accepts the IP ranges you have specified.
|
 |
 |
Security & compliance
|
Standard
Cleura Public Cloud is provided with a fixed, standard level of security.
|
Tailored
Cleura Compliant Cloud is provided with the opportunity to discuss tailored measures like extended reporting, adapted backup schedules, cryptographic requirements or other steps to enable compliance with your unique requirements or specific certifications.
|
Data processing agreement
|
Standard
Cleura Public Cloud offers a fixed, standard data processing agreement (DPA).
|
Tailored
Cleura Compliant Cloud offers a data processing agreement (DPA) tailored to your specific processing activities.
|
NIS2 cybersecurity
You have risks, we bring cybersecurity. Our cloud services offer security levels appropriate for different types of risks.
|
Standard
Cleura Public Cloud offers a standard level of cybersecurity, which may be appropriate for some uses under NIS2. As a NIS2 entity, you are responsible for assessing whether Cleura Public Cloud offers sufficient security or whether you need a higher level of security, such as the one provided by Cleura Compliant Cloud.
|
Extended
Cleura Compliant Cloud offers a higher level of cybersecurity, which may be appropriate for more demanding uses under NIS2. For example, Cleura Compliant Cloud offers availability zones, helping you meet especially stringent business continuity requirements, e.g. under NIS2 Article 21(2)(c). As a NIS2 entity, you are responsible for assessing how you can use Cleura Compliant Cloud.
|
Personnel screening
Every team member with physical and/or logical access to our infrastructure is thoroughly screened to ensure a secure, trusted experience.
|
Standard |
Extended
Personnel access to Cleura Compliant Cloud requires a more extensive screening process.
|
Physical access controls
Physical access controls protect access to hardware, such as servers and other equipment located in the data centers.
|
Standard
Cleura Public Cloud physical access controls include requiring badge identification and authentication, as well as standard CCTV coverage.
|
Extended
Cleura Compliant Cloud has extended physical access controls, including data centers with multi-layered security zones, second factor verification (such as biometric or badge+PIN), extended physical security (such as racks with tamper-proof seals), and CCTV covering every angle of Cleura’s IT stack.
|