Transparency Center

Security of your data

Data protection and security are our top priority

Trusting in cloud computing means, despite initial uncertainty and subjective vulnerability, to expect providers of cloud services to use their free zones competently and with a willingness to shoulder responsibility.

In collaboration with our technology partners, we would like to strengthen your confidence and ensure the greatest possible transparency.

Amazon Web Services

Amazon Web Services has successfully passed several certifications and is rated as a premium service provider.

Further necessary controls and independent safety tests were also implemented. For information regarding risk and compliance measures, please click on the following PDF file.

Whitepaper "Amazon Web Services: Risk and Compliance" (PDF).

Safety Measures

AWS Identity and Access Management (IAM)
AWS Multi-Factor Authentication (AWS MFA)
Key Rotation
Penetration Tests
Physical Security
Storage Device Decommissioning

Certifications and Accreditations

ISO 27001
Fisma Moderate
SOC 1/SSAE 16/ISAE 3402
PCI DSS Level 1
FIPS 140-2
HIPAA

Integrated Third Party Providers and Services

Honeybadger

The Infopark system architecture uses the Application Error Monitoring Service Honeybadger. The service is deployed for monitoring applications on the Elastic Web Platform. www.honeybadger.io

GitHub

The Infopark system architecture uses the web-based version management system of GitHub Inc. The service is used for the development of applications on the Elastic Web Platform. www.github.com

New Relic

The Infopark system architecture uses the Application Performance Monitoring Service of New Relic Inc. The service is deployed for monitoring applications on the Elastic Web Platform. www.newrelic.com

Further Information

Extensive background information and an overview of the AWS philosophy for the provision of a safe cloud computing platform. Whitepaper "Amazon Web Services: Overview of Security Processes (PDF)

Amazon Web Services is a technology platform with industry recognized certification and audits. Various services and computer centers provide multi-layered security systems which ensure integrity and data privacy. Please visit the AWS Security and Compliance Center.

Certifications and Safety Measures

ISO 9001

The certification ISO 9001 defines the minimum requirements for quality management systems irrespective of the industry involved. It aids the continual improvement of corporate processes.

Certification of the Infopark AG (PDF)

coseco GmbH

The coseco GmbH has been appointed as the Compliance Office of Infopark AG in accordance with § 4 Sec.1 of the Federal Data Protection Act (BDSG).

coseco assumes the obligations of the data protection officer defined in the BDSG and monitors compliance with the Federal Data Protection Act as well as other regulations regarding data privacy within Infopark AG.

Technical and Organizational Measures

Particular technical and organizational measures for data security will be taken by Infopark in accordance with the Federal Data Protection Act (BDSG §9).

Documentation of technical and organizational measures (PDF)

Order Processing

According to the Federal Data Protection Act (BDSG § 11) the collection, processing or use of personal data by Infopark AG is on behalf of the responsible party (customer).

Model contract for data processing (PDF)

General Terms and Licensing Conditions

Conditions for the use and operational support system of standard software programs made by Infopark are provided as software-as-a-service via the Internet.

Link to the Terms and Licensing Conditions