Listed Since: 11/07/2020
Last Updated: 06/12/2023
Level 1: Self-Assessment
At level one organizations can submit one or both of the security and privacy self-assessments. These are based off of the Cloud Controls Matrix and the CSA Code of Conduct for GDPR Compliance.
Level 2: Third-Party Audit
Organizations looking for a third-party audit can choose from one or more of the security and privacy audits and certifications.
A technology-neutral certification leveraging the requirements of the ISO/IEC 27001 management system standard together with the CSA Cloud Controls Matrix (CCM).