YugabyteDB Achieves ISO 27001 Certification
YugabyteDB receives globally recognized ISO 27001 certification, demonstrating the maturity of our security program and commitment to protecting customer data.
February 8, 2023
Compliance
October 27, 2022
Announcing SOC 2 and SOC 3 Compliance for YugabyteDB
We’re delighted to announce that we have successfully completed our Service Organization Controls (SOC) 2 Type 2 and SOC 3 attestations, covering YugabyteDB, YugabyteDB Anywhere, and YugabyteDB Managed.
March 31, 2022
Achieving PCI DSS Compliance with YugabyteDB
Welcome back to our blog series about how different compliance and regulatory frameworks work and how YugabyteDB can be an essential part of a company’s compliance efforts. In this third installment, we focus on the PCI Security Standards Council’s Payment Card Industry Data Security Standard (PCI DSS). More specifically, we reveal how companies can use YugabyteDB to enable compliance with certain key PCI DSS requirements.
For further details, read our recently published Yugabyte PCI DSS Compliance Guide.
…
February 23, 2021
Achieving GDPR Compliance with YugabyteDB
Editor’s note, this is the second post in the series:
- Part 1: Achieving Compliance with YugabyteDB
- Part 2: Achieving GDPR Compliance with YugabyteDB (this post)
This is the second in a series of posts about how different compliance and regulatory frameworks work and how YugabyteDB can be an essential part of a company’s compliance efforts. This installment focuses on the EU’s General Data Protection Regulation (GDPR),
…
February 17, 2021
Achieving Compliance with YugabyteDB
This is the first in a series of posts about how different compliance and regulatory frameworks work and how YugabyteDB can be an essential part of a company’s compliance efforts. This installment is an overview of the different international compliance frameworks companies encounter on their journeys with customers.
What’s the Purpose of a Compliance Framework?
A compliance framework is a set of guidelines, baselines and best practices used by companies to establish internal controls to meet regulatory requirements,
…
February 3, 2021
Applying Legal Design Thinking to the Software Development Process
Legal compliance for technology startups can be overwhelming. GDPR, CCPA, HIPAA, SOX, PCI, NIST — with so many long acronyms covering so many different legal frameworks, it can be hard to keep track of what applies to what, and become easy to fall into the trap of thinking you’ll deal with it later. But that can result in big technical and legal debt down the road that inhibits a startup’s growth very quickly. There is a middle road — applying legal design thinking from the beginning allows companies to innovate while at the same time choosing a legal framework for their software that meets customer needs and ensures business success.
…