- ISO/IEC 27001:2013
- FTC regulations
- U.S.-E.U. & U.S.-Swiss Safe Harbor frameworks
- Bureau of Industry and Security U.S. Department of Commerce requirements
- TRUSTe Privacy Program Requirements
- All other relevant national and local legal, regulatory and contractual requirements
We have implemented a two step approach to compliance. First, we ensure that all external and internal requirements are embedded within our policies and supported by underlying standards, technologies and processes. Second, through internal risk assessments and audits, we regularly test to ensure that all security controls are implemented properly and operating effectively.
We use an independent third party to perform AT Section 101 attestation that produces a SOC2 Type II report for the Security principle. In addition, an independent third party performs a yearly enterprise risk assessment on our critical information resources.
ThousandEyes is a corporate member of Cloud Security Alliance, where we share information and collaborate with other industry leading companies in order to maintain the highest level of security best practices.