Compliance
Spiceware adheres to rigorous security and privacy standards so customers can use our services with confidence
CSA STAR Certification 클라우드 서비스 역량 수준을 정량적으로 측정하는 글로벌 보안 인증 https://cloudsecurityalliance.org/star/registry/spiceware-co-ltd
The CSA STAR Certification is a rigorous third-party independent assessment of the security of a cloud service provider. This technology-neutral certification leverages the requirements of the ISO/IEC 27001:2013 management system standard together with the CSA Cloud Controls Matrix.
ISO/IEC Certification 국제 정보보호 관리체계 인증/클라우드 서비스의 정보보호 국제 표준
The International Organization for Standardization (ISO) is an independent nongovernmental organization and the world's largest developer of voluntary international standards. The ISO/IEC 27000 family of standards helps organizations of every type and size keep information assets secure.
ISO certification identifies companies committed both to quality standards and the quality management systems needed to meet these standards. Achieving and maintaining certification is based a system of voluntary, independent audits. This accountability helps organizations maintain and improve the quality of their products and services
ISO certification identifies companies committed both to quality standards and the quality management systems needed to meet these standards. Achieving and maintaining certification is based a system of voluntary, independent audits. This accountability helps organizations maintain and improve the quality of their products and services
- ISO/IEC 27001
Information Security Management
Defined within the ISO 27001 standard are information security guidelines, requirements intended to protect an organisation’s data assets from loss or unauthorised access and recognised means of demonstrating their commitment to information security management through certification. - ISO/IEC 27017
Code of practice for information security controls based on ISO/IEC 27002 for cloud services
ISO/IEC 27017 provides enhanced controls for cloud service providers and cloud service customers. Unlike many other technology-related standards ISO/IEC 27017 clarifies both party’s roles and responsibilities to help make cloud services as safe and secure as the rest of the data included in a certified information management system. - ISO/IEC 27018
Code of practice for protection of personally identifiable information (PII)
ISO/IEC 27018:2019 is an information security code of practice for cloud service providers who process personally identifiable information for their customers. It’s an extension to ISO/IEC 27001:2013 and ISO/IEC 27002, and it provides additional security controls. It details privacy requirements and security control enhancements for privacy to be implemented by cloud service providers.
AWS Qualified Software
Spiceware One is an AWS Qualified Software which is earned through AWS Foundational Technical Review (FTR), a set of strict guidelines set by AWS to adopt a subset of AWS best practices to reduce risks around security, reliability, and operational excellence, as defined by the AWS Well-Architected Framework.