We are thrilled to announce our achievement of two prestigious certifications, ISO 22301 and ISO 9001, showcasing our commitment to maintaining business continuity and delivering exceptional quality for our enterprise customers running critical workloads with YugabyteDB, YugabyteDB Anywhere, and YugabyteDB Managed database offerings.
YugabyteDB receives globally recognized ISO 27001 certification, demonstrating the maturity of our security program and commitment to protecting customer data.
We’re delighted to announce that we have successfully completed our Service Organization Controls (SOC) 2 Type 2 and SOC 3 attestations, covering YugabyteDB, YugabyteDB Anywhere, and YugabyteDB Managed.
Welcome back to our blog series about how different compliance and regulatory frameworks work and how YugabyteDB can be an essential part of a company’s compliance efforts. In this third installment, we focus on the PCI Security Standards Council’s Payment Card Industry Data Security Standard (PCI DSS). More specifically, we reveal how companies can use YugabyteDB to enable compliance with certain key PCI DSS requirements.
For further details, read our recently published Yugabyte PCI DSS Compliance Guide.
…
Editor’s note, this is the second post in the series:
This is the second in a series of posts about how different compliance and regulatory frameworks work and how YugabyteDB can be an essential part of a company’s compliance efforts. This installment focuses on the EU’s General Data Protection Regulation (GDPR),
…
This is the first in a series of posts about how different compliance and regulatory frameworks work and how YugabyteDB can be an essential part of a company’s compliance efforts. This installment is an overview of the different international compliance frameworks companies encounter on their journeys with customers.
A compliance framework is a set of guidelines, baselines and best practices used by companies to establish internal controls to meet regulatory requirements,
…
Legal compliance for technology startups can be overwhelming. GDPR, CCPA, HIPAA, SOX, PCI, NIST — with so many long acronyms covering so many different legal frameworks, it can be hard to keep track of what applies to what, and become easy to fall into the trap of thinking you’ll deal with it later. But that can result in big technical and legal debt down the road that inhibits a startup’s growth very quickly. There is a middle road — applying legal design thinking from the beginning allows companies to innovate while at the same time choosing a legal framework for their software that meets customer needs and ensures business success.
…