Our storage technology is deployed in top tier data centers certified for SOC 2, ISO 27001, and PCI-DSS.

Datacenter Documention

HIPAA

Health Insurance Portability and Accountability Act (HIPAA)

Wasabi stores protected health information (PHI) and electronic protected health information (ePHI) in accordance with HIPAA and the Health Information Technology for Economic and Clinical Health Act (HITECH)—as administered by the U.S. Department of Health and Human Services (HHS). Wasabi uses security best practices and technologies to ensure physical security of its facilities and to maintain the privacy and integrity of electronic data and digital records.

Learn More About Security
Solution Brief Fallback
Solution briefAffordable, secure, and compliant storage for healthcare and life sciences

CJIS

Criminal Justice Information Services (CJIS)

With Wasabi, you can store data compliantly with standards set for data privacy, security, durability, and protection for Criminal Justice Information (CJI) and other critical information, as required by CJIS, a division of the U.S. Federal Bureau of Investigation (FBI).

E-Book Fallback
ebookSecure CJIS for all law enforcement agencies

FERPA

Family Educational Rights and Privacy Act (FERPA)

Wasabi cloud storage allows educational institutions to comply with the mandated requirements of FERPA, which imposes specific technical and administrative requirements for education IT planners, InfoSec organizations, and compliance officers who receive any aid from the U.S. Department of Education.

E-Book Fallback
ebookSupport for FERPA compliance

GDPR & UK GDPR

EU & UK General Data and Protection Regulation (GDPR)

Store and maintain personal data in compliance with the GDPR mandates for both the European Union (EU) and United Kingdom (UK). ​The laws impose strict data privacy and security rules for businesses and IT service providers, with significant potential for fines for violations.

E-Book Fallback
ebookGDPR Compliance with Wasabi

TPN

Trusted Partner Network (TPN)

The Trusted Partner Network is a global media and entertainment community network and security initiative operated by the Motion Picture Association (MPA).

Wasabi has successfully completed Blue Shield assessments and we continue to pursue all certifications necessary to remain compliant for organizations with varying multi-media and motion picture assets and requirements.

SEC

U.S. Securities and Exchange Commission (SEC) & Securities and Exchange Act (SEA)​

Effective on May 1, 2023, the SEC, SEA's updated rules require that third-party record-keeping services provide an undertaking letter to its customer organizations. Contact us to request an SEC alternate undertaking letter per 17 CFR 240.17a 4(i)(1)(ii)(A).

FAQ Help
DocumentationData access restrictions in the USA for Wasabi users

fedramp

Federal Risk and Authorization Management Platform (FedRAMP®)

The Federal Risk and Authorization Management Platform (FedRAMP) is managed by the FedRAMP Program Management Office (PMO). It is a government-wide program that promotes the adoption of secure cloud services across the federal government. Our platform is compliant with FedRAMP Moderate controls through an assessment performed by an approved FedRAMP 3PAO (Schellman Compliance LLC), and has a status of “FedRAMP Ready”, with plans to continue along the Authorization status track in 2025.

Data Sheet Fallback
Data sheetWasabi GovCloud data sheet

ISO Certification

ISO 27001 Certification

Wasabi has met the voluntary standard according to ISO for Information Security Management Systems (ISMS), completed through the auditor
A-LIGN. This specific framework is in accordance with ISO/IEC 27001, supporting both the confidentiality, integrity, and availability of customer data, supplier information, and Wasabi Technologies’ internal data related to Wasabi applications, products, services, and environment.

FAQ Help
DocumentationISO 27001 Compliance

More questions about compliance?

Talk to an Expert
Legal Information