CloudNC Trust Center

Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

Welcome to CloudNC's CloudNC Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this CloudNC Trust Center to learn about our security posture and request access to our security documentation.

Compliance

Cyber Essentials Plus Logo
Cyber Essentials Plus
Cyber Essentials Logo
Cyber Essentials
ISO/IEC 27001:2022 Logo
ISO/IEC 27001:2022
SOC 2 Type 2 Logo
SOC 2 Type 2
SOC 2 Type 1 Logo
SOC 2 Type 1

CloudNC is reviewed and trusted by

Cyber Trust
URM Consulting
AssuranceLab-company-logoAssuranceLab

Documents

REPORTSData Flow Diagram (DFD)
REPORTSNetwork Diagram
REPORTSPentest Report
REPORTSSecurity Whitepaper
REPORTSSOC 2 Type 2 Report
COMPLIANCECyber Essentials
COMPLIANCECyber Essentials Plus
COMPLIANCEISO/IEC 27001:2022
COMPLIANCESOC 2 Type 1
COMPLIANCESOC 2 Type 2
APP SECURITYResponsible Disclosure
ESGAnti-Bribery and Corruption

Risk Profile

Data Access LevelInternal
Impact LevelModerate
Recovery Time Objective48-72 hours
View more

Product Security

We pay great attention to enterprise features such as access control and single sign on. We are happy to provide more details about our enterprise features upon request.

Reports

Pentest Report
SOC 2 Type 2 Report
Data Flow Diagram (DFD)
View more

Self-Assessments

We are working on our security compliance. We can provide completed questionnaires upon request.

Data Security

We follow industry best practices for data security. We are happy to provide more details about our data security practices upon request.

App Security

Responsible Disclosure

AI

We take the usage of AI seriously in our organization and work to ensure security and reliability of the AI.

ESG

Anti-Bribery and Corruption

Legal

SubprocessorsHubSpot-company-logoChargebee-company-logoAmazon Web Services (AWS)-company-logoZendesk-company-logoAmazon Web Services (AWS)-company-logo
Cyber Insurance
Privacy Policy
View more

Data Privacy

Privacy of customer data is top of mind. We follow industry best practices and follow all applicable privacy regulations.

Access Control

Access is tightly monitored and controlled at our company. We are happy to provide more details about our access control practices upon request.

Infrastructure

Status Monitoring
Amazon Web Services

Endpoint Security

Anti-Malware
Disk Encryption
Software Firewall

Network Security

Network Penetration Testing
Bot Detection
Virtual Private Cloud
View more

Corporate Security

Email Protection
Incident Response
Internal SSO
View more

Policies

Our policies and authored, reviewed, approved and acknowledged in Drata.

Security Grades

Qualys SSL Labs
auth.cloudnc.com
A

Incident Response

Designated Response Personnel
Incident Reporting Process
Pager Service

Risk Management

Data Access/Impact Levels
Risk Assessments
Supply Chain Risk Management

Asset Management

We have strict asset management policies in place to ensure that all assets are accounted for and secure.

BC/DR

Business Continuity Plan (BCP)
Disaster Recovery Plan (DRP)
Failover/High Availability
View more

Training

Phishing Training
Secure Development Training
Security Awareness Training
View more

Change Management

We have a change and configuration management process in place to ensure that changes are properly reviewed and approved.

Physical & Environment

We have physical and environmental controls in place to ensure that our data centers are secure and reliable.

Continuous Monitoring

Automated Compliance Monitoring

Subprocessors

Knowledge Base (FAQ)
  • Do you perform backups?
  • How you define and manage Subprocessors?
  • Do you have a Responsible Disclosure Policy?
  • Do you have a Privacy Policy?
  • Do you segregate your networks?
View more
Built onSafeBase by Drata Logo