- ISO/IEC 27001:2013
- FTC regulations
- Privacy Shield
- Bureau of Industry and Security U.S. Department of Commerce requirements
- TRUSTe Privacy Program Requirements
- All other relevant national and local legal, regulatory and contractual requirements
We have implemented a two step approach to compliance. First, we ensure that all external and internal requirements are embedded within our policies and supported by underlying standards, technologies and processes. Second, through internal risk assessments and audits, we regularly test to ensure that all security controls are implemented properly and operating effectively.
We use an independent third party to perform AT Section 101 attestation that produces a SOC2 Type II report for the Security principle. In addition, an independent third party performs a yearly enterprise risk assessment on our critical information resources.
ThousandEyes is a corporate member of Cloud Security Alliance, where we share information and collaborate with other industry leading companies in order to maintain the highest level of security best practices. ThousandEyes is also a member of the Center for Internet Security, a forward-thinking non-profit entity that harnesses the power of a global IT community to safeguard private and public organizations against cyber threats.