Standards and Certifications

ISO/IEC 27701

ISO/IEC 27701 is an extension of ISO/IEC 27001 and focuses on privacy management. Organizations that manage and process Personal Identifiable Information (PII) must meet the requirements set by ISO/IEC 27701. The cloud services and products of ManageEngine are ISO/IEC 27701 certified.

GDPR

The General Data Protection Regulation (GDPR) is a European law enacted to protect and secure data. Organizations that handle personal data related to people in EU must comply with the standards set by GDPR to prevent data breaches and related threats. ManageEngine periodically assesses its products, conducts audits and has appointed a Data Protection Officer (DPO) to ensure compliance with GDPR.

SOC 2

SOC 2 deals with the controls put in place to manage customer data based on AICPA's five principles - security, availability, processing integrity, confidentiality, and privacy. ManageEngine and its products are SOC 2 Type II compliant.

Health Insurance Portability and Accountability Act (HIPAA)

HIPAA is a US federal law passed in 1996. It aims to protect the privacy and security of individuals' personal health information (PHI) by setting national standards for the collection, use, and disclosure of PHI.

Click here to know more.