Compliance

Spiceware adheres to rigorous security and privacy standards so customers can use our services with confidence

CSA STAR Certification
클라우드 서비스 역량 수준을 정량적으로 측정하는 글로벌 보안 인증
https://cloudsecurityalliance.org/star/registry/spiceware-co-ltd

The CSA STAR Certification is a rigorous third-party independent assessment of the security of a cloud service provider. This technology-neutral certification leverages the requirements of the ISO/IEC 27001:2013 management system standard together with the CSA Cloud Controls Matrix.

ISO/IEC Certification
국제 정보보호 관리체계 인증/클라우드 서비스의 정보보호 국제 표준

The International Organization for Standardization (ISO) is an independent nongovernmental organization and the world's largest developer of voluntary international standards. The ISO/IEC 27000 family of standards helps organizations of every type and size keep information assets secure.

ISO certification identifies companies committed both to quality standards and the quality management systems needed to meet these standards. Achieving and maintaining certification is based a system of voluntary, independent audits. This accountability helps organizations maintain and improve the quality of their products and services
  • ISO/IEC 27001

    Information Security Management

    Defined within the ISO 27001 standard are information security guidelines, requirements intended to protect an organisation’s data assets from loss or unauthorised access and recognised means of demonstrating their commitment to information security management through certification.
  • ISO/IEC 27017

    Code of practice for information security controls based on ISO/IEC 27002 for cloud services

    ISO/IEC 27017 provides enhanced controls for cloud service providers and cloud service customers. Unlike many other technology-related standards ISO/IEC 27017 clarifies both party’s roles and responsibilities to help make cloud services as safe and secure as the rest of the data included in a certified information management system.
  • ISO/IEC 27018

    Code of practice for protection of personally identifiable information (PII)

    ISO/IEC 27018:2019 is an information security code of practice for cloud service providers who process personally identifiable information for their customers. It’s an extension to ISO/IEC 27001:2013 and ISO/IEC 27002, and it provides additional security controls. It details privacy requirements and security control enhancements for privacy to be implemented by cloud service providers.

AWS Qualified Software

Spiceware One is an AWS Qualified Software which is earned through AWS Foundational Technical Review (FTR), a set of strict guidelines set by AWS to adopt a subset of AWS best practices to reduce risks around security, reliability, and operational excellence, as defined by the AWS Well-Architected Framework.

We are committed to ensuring that our customers and partners can meet various compliance requirements. To download our compliance certifications, please submit a request form by clicking the button below.