Cloud 101CircleEventsBlog
Master CSA’s Security, Trust, Assurance, and Risk program—download the STAR Prep Kit for essential tools to enhance your assurance!

STAR Registry Listing for

Digital Experience Platform

Founded in 2013 by the Cloud Security Alliance, the Security Trust Assurance and Risk (STAR) registry encompasses key principles of transparency, rigorous auditing, and cloud security and privacy best practices.

Digital Experience Platform

Digital Experience Platform

As the largest commercial organization behind Drupal, we help every member of your team utilize the innovation that’s available within the Drupal community - over 45,000 modules. We offer an enterprise set of tools, built on top of Drupal. Our products make up the world’s only “Open DXP.” Recognized by Gartner as a “leader” in their most recent Magic Quadrant report organizations select Acquia’s DXP because it offers unmatched flexibility, speed, intelligence and security.

Offered individually or as a joint solution, our DXP consists of the Drupal Cloud and the Marketing Cloud.

Acquia’s Drupal Cloud is focused on content, allowing our clients to quickly scale the volume of digital content they can create and deploy across all websites and digital applications. Acquia’s Marketing Cloud is focused on data and optimization, empowering clients to collect, cleanse and action their customer's data all while remaining compliant with relevant and applicable regulations.

While Acquia provides a complete set of digital experience capabilities, our platform is architected for “composability.” We allow our clients to purchase solutions they need based on where they are in their digital transformation. With an API first approach to all our products, we empower our clients to keep the existing systems that work and implement Acquia’s solution alongside of them.

Information about Digital Experience Platform
Listed Since: 09/20/2021
Last Updated: 09/18/2024

STAR Level 1

Self-Assessment & Partner-Provided

Consensus Assessments Initiative Questionnaire v4.0.3

CAIQ 4.0.3 Self-assessment
Offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services. It provides a set of Yes/No questions a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the CSA Cloud Controls Matrix (CCM).

STAR Level 2

Third-Party Audit

Organizations looking for a third-party audit can choose from one or more of the security and privacy audits and certifications.

Cloud Controls Matrix v3.0.1

STAR Certification
A technology-neutral certification leveraging the requirements of the ISO/IEC 27001 management system standard together with the CSA Cloud Controls Matrix (CCM).
(Deprecated)
Deprecated assessments do not necessarily indicate non-compliance. In this case, the self-assessment has not been updated in more than one year. We suggest contacting this organization directly to request that they submit an updated self-assessment.