Compliance
Rest Assured, We've Got You Covered
Wasabi meets or exceeds all major industry compliance standards and government regulations.
&w=1200&q=75)
Our storage technology is deployed in top tier data centers certified for SOC 2, ISO 27001, and PCI-DSS.
HIPAA
Health Insurance Portability and Accountability Act (HIPAA)
Wasabi stores protected health information (PHI) and electronic protected health information (ePHI) in accordance with HIPAA and the Health Information Technology for Economic and Clinical Health Act (HITECH)—as administered by the U.S. Department of Health and Human Services (HHS). Wasabi uses security best practices and technologies to ensure physical security of its facilities and to maintain the privacy and integrity of electronic data and digital records.
&w=1200&q=75)
&w=1200&q=75)
CJIS
Criminal Justice Information Services (CJIS)
With Wasabi, you can store data compliantly with standards set for data privacy, security, durability, and protection for Criminal Justice Information (CJI) and other critical information, as required by CJIS, a division of the U.S. Federal Bureau of Investigation (FBI).
&w=1200&q=75)
&w=1200&q=75)
FERPA
Family Educational Rights and Privacy Act (FERPA)
Wasabi cloud storage allows educational institutions to comply with the mandated requirements of FERPA, which imposes specific technical and administrative requirements for education IT planners, InfoSec organizations, and compliance officers who receive any aid from the U.S. Department of Education.
GDPR & UK GDPR
EU & UK General Data and Protection Regulation (GDPR)
Store and maintain personal data in compliance with the GDPR mandates for both the European Union (EU) and United Kingdom (UK). The laws impose strict data privacy and security rules for businesses and IT service providers, with significant potential for fines for violations.
TPN
Trusted Partner Network (TPN)
The Trusted Partner Network is a global media and entertainment community network and security initiative operated by the Motion Picture Association (MPA).
Wasabi has successfully completed Blue Shield assessments and we continue to pursue all certifications necessary to remain compliant for organizations with varying multi-media and motion picture assets and requirements.
SEC
U.S. Securities and Exchange Commission (SEC) & Securities and Exchange Act (SEA)
Effective on May 1, 2023, the SEC, SEA's updated rules require that third-party record-keeping services provide an undertaking letter to its customer organizations. Contact us to request an SEC alternate undertaking letter per 17 CFR 240.17a 4(i)(1)(ii)(A).
fedramp
Federal Risk and Authorization Management Platform (FedRAMP®)
The Federal Risk and Authorization Management Platform (FedRAMP) is managed by the FedRAMP Program Management Office (PMO). It is a government-wide program that promotes the adoption of secure cloud services across the federal government. Our platform is compliant with FedRAMP Moderate controls through an assessment performed by an approved FedRAMP 3PAO (Schellman Compliance LLC), and has a status of “FedRAMP Ready”, with plans to continue along the Authorization status track in 2025.
&w=1200&q=75)
ISO Certification
ISO 27001 Certification
Wasabi has met the voluntary standard according to ISO for Information Security Management Systems (ISMS), completed through the auditor
A-LIGN. This specific framework is in accordance with ISO/IEC 27001, supporting both the confidentiality, integrity, and availability of customer data, supplier information, and Wasabi Technologies’ internal data related to Wasabi applications, products, services, and environment.