Product Certifications and Compliance
Security is at the center of Exabeam – from the products we build to our day-to-day operations.
ISO Certifications
International Organization for Standardization (ISO) is an independent group that develops internationally-recognized standards to support innovation and provide solutions to global challenges. Standards include requirements for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS). ISO certifications demonstrate that Exabeam has completed an independent assessment of the processes in place to maintain the security of sensitive data that help reduce information security risk for our customers, partners, and employees.
ISO Certifications:
27001
27017
27018
SOC 2 Type II
SOC 2 Type II requires companies to develop and follow strict information security procedures and policies for the security, availability, processing, integrity, confidentiality, and privacy of customer data. The successful completion of this accreditation illustrates the commitment from Exabeam to create and maintain a secure operating environment for our clients’ confidential data.
EU-U.S. Data Privacy Framework
The EU-U.S. Data Privacy Framework is a set of principles for the collection, use, and retention of personal information transferred from the European Union, Switzerland, and UK to the United States. Exabeam complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce.
Exabeam has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. Exabeam has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF.
Learn More
GDPR
Exabeam has implemented the technical and organizational controls required to adhere to the General Data Protection Regulation (“GDPR”). The European Union enacted GDPR to establish requirements and standards for companies that may have access to data from EU citizens or residents. As part of Exabeam’s efforts to comply with GDPR, Exabeam aligns its security measures with commercially accepted certifications. Exabeam’s current certifications are included on this page.
Learn More
IRAP
Exabeam has completed an IRAP assessment at the PROTECTED level for the Exabeam Security Operations Platform. The Information Security Registered Assessors Program (IRAP) is a framework by the Australian Cyber Security Centre (ACSC), a division of the Australian Signals Directorate (ASD), to evaluate an organization’s security controls, ensuring alignment with Australian government security requisites.