In corporate management, IT compliance describes adherence to legal, intercompany and contractual regulations in the area of IT landscape. This sub-area focuses on those aspects of compliance requirements that affect a company's IT systems. IT compliance requirements include, in particular, information security, availability, data retention and data protection. Companies are subject to numerous legal obligations, non-compliance with which can lead to high fines and liability obligations. EU directives, international conventions, internal company conventions and trade practices impose additional rules.

Compliance and information security are top priorities for Claranet. We have been aligning our services and operating processes with the only internationally recognised standard for information security ISO/IEC 27001 since 2011. We also fulfil many other national and international requirements with regard to compliance and (cloud) information security.

Numerous compliance requirements must also be taken into account when using cloud services. Firstly, there are laws and regulations, compliance with which is mandatory for all companies. There is also the option of voluntarily taking additional certifications or tests.

Laws/regulations/data protection

We at Claranet and our customers are responsible for complying with applicable laws and regulations. In some cases, we offer our customers certain functions (e.g. security functions), assistants and legal agreements to support their compliance.

Certifications/Testing

Compliance certifications and testing represent an additional compliance offering from Claranet that goes beyond the legal requirements. Compliance with the specified guidelines is assessed by external, independent auditors. A certification, an audit report or a compliance test is then issued.