• Compliance and Certification

    • certifications_and_compliance.jpg

Industry compliance and certifications reinforce our operational excellence

We’re serious about security, process controls, and environmental stewardship – and we know these values are important to our customers too. We go the extra mile to attain data center and security industry accreditations that our commercial customers can be sure their mission-critical IT systems are safe at our data center colocation facilities. 

When it comes time to perform your own audits and accreditation processes, we’re standing by to help with facility tours and interviews with our IT security and physical security professionals – without any extra fees. 

Americas certifications

SOC1 and SOC2 Type II

Every year, NTT Global Data Centers Americas completes the SOC1 and SOC 2 Type II audits with a nationally recognized accounting firm with zero exceptions. We don't just meet SOC1 and SOC 2 standards – in most cases, we exceed them.

Learn more

ISO 27001

ISO 27001 (known as ISO/IEC 27001:2013) is an international standard outlining best practices for an information security management system (ISMS), which is a framework of policies and procedures that includes all legal, physical, and technical controls involved in an organization’s information risk management processes.

Learn more

PCI DSS

NTT Global Data Centers Americas dedication to strict physical access controls and network security gives our customers peace of mind that we proactively safeguard their consumer information. PCI DSS is a vital industry standard for the protection of sensitive cardholder data, and NTT Global Data Centers Americas is proud to host compliance tours and interviews with our security staff in support of customer PCI DSS compliance verifications.

Learn more

LEED Gold

LEED Gold certification demonstrates NTT Global Data Centers Americas commitment to greater efficiency in energy, lighting and water use, as well as the utilization of recycled and reused materials during the construction process. NTT Global Data Centers Americas facility design process focuses on achieving a model of energy and material efficiency through numerous design innovations and green construction techniques.

Learn more

EPA Energy Star

This accomplishment signifies that the building performs in the top 25 percent of similar facilities nationwide for energy efficiency and meets strict energy efficiency performance levels set by the EPA. NTT Global Data Centers Americas is the only 2011 ENERGY STAR certified data center focused on multi-tenant collocation services.

Learn more

HIPPA

NTT Global Data Centers Americas engaged Schellman & Company CPAs, one of the top auditing firms in the United States, to review NTT Global Data Centers Americas information security program and controls for compliance with the HIPAA Security Rule.

Learn more

NIST 800-53 High

NTT Global Data Centers Americas is committed to providing the security and compliance required to host both federal government customers, federal systems integrators, and cloud service providers. To this end, NTT Global Data Centers Americas has implemented the NIST 800-53 high baseline controls necessary to support our customers' Federal Information Security Management Act (FISMA) compliance efforts.

Learn more

 

APAC certifications

ISO 27001 

International standards for information security. 

PCI DSS 

International standard for the safe handling of credit cards. 

SOC1・2 

SOC1 assessment of the internal control of the trustee company in relation to the financial reporting of the trustee company, SOC2 assessment of the internal control of the trustee company in the trustee business in areas not related to financial reporting, such as security, confidentiality, solubility, privacy, and integrity of processing (international standards are ISAE3402 for SOC1, ISAE3000 for SOC2, and SSAE18 for the United States). 

ISO 9001 

International standards for quality management systems. 

TVRA (Threat, Vulnerability and Risk Assessment)

A requirement issued by the MSA for financial institutions headquartered in Singapore with overseas branches, as a control measure required by OSPAR and the MSA.

Uptime M&O 

Global operating standards for data centers. 

ISO 50001 

International standards for Energy Management Systems (EnMS).

LEED

A system for assessing the environmental performance of built environments, developed and operated by the non-profit USGBC* and audited for certification by the GBCI**. 

TIA-942 Rated 3 

Design standards for data centers established by the TIA. The Rated -3 is required to have redundancy that does not affect the IT crisis at the time of facility maintenance or failure.

ISO 45001 (OSHMS)

International standard for occupational health and safety management systems. 

DCOS

Data Center operation standards established by EPI.

OSPAR

The Association of Banks in Singapore (ABS) has issued guidelines on information security measures for Outsourcing Service Providers (OSPs) who wish to provide services to Financial Institutions (FIs) operating in Singapore. OSPAR is issued with an audit report stating that it has been audited by a third party and meets the standards.

Uptime Tier design

 

EMEA certifications

ISO 27001 

ISO 27001 is an international standard outlining best practices for an information security management system (ISMS), which is a framework of policies and procedures that includes all legal, physical, and technical controls involved in an organization’s information risk management processes. 

PCI DSS 

Our dedication to strict physical access controls and network security gives our clients peace of mind that we proactively safeguard their consumer information. PCI DSS is a vital industry standard for the protection of sensitive cardholder data, and we are proud to host compliance tours and interviews with our security staff in support of customer PCI DSS compliance verifications. 

DIN EN 50600 

We live data centers. From design, construction to operation. DIN EN 50600 covers all parts and areas of a data center – from the building itself to the power supply and air conditioning, all the way to fire protection, and from the IT wiring itself to access controls. 

BREEAM UK 

BREAM UK certification for our London 1 Data Center demonstrates our commitment to greater efficiency in energy, lighting and water use, as well as the utilization of recycled and reused materials. Our facility design process focuses on achieving a model of energy and material efficiency through numerous design innovations and green construction techniques. 

 

India certifications

ISO 27001

Protecting information from getting into unauthorized hands by assessing and mitigating risk and implementing control based on industry best practices.

ISO 9001

Helps to consistently create value for our clients and constantly improve the service quality.

ISO 20000

Ensures fulfilment of clients' needs by providing cost-effective, reliable and consistent IT services.

ISO 22301

Business continuity system to ensure business recovery from disruptive incidents.

PCIDSS

A security standard to protect payment cardholder data.

SOC 1 and SOC 2

Based on SSAE 18. Ensures controls are appropriately designed and operating effectively to mitigate risks.