Attestations & Certifications
Global
Alibaba Cloud adheres to international information security standards and is committed to using international best practices.
Regional
Alibaba Cloud adheres to all the domestic information security standards of the countries and regions where our cloud services are deployed.
Industry
Alibaba Cloud adheres to industry-standard practices, continually conducts self-assessment reviews, and has obtained all of the relevant industry certifications.
Data Protection & Privacy
Alibaba Cloud is committed to protecting the personal information of customers worldwide and to complying with applicable laws of countries where our business operates.
-
-
General Data Protection Regulation (GDPR)
Alibaba Cloud has been GDPR-ready since May 25, 2018.
-
-
EU Cloud Code of Conduct
Alibaba Cloud is a Founding Member of the EU Cloud Code of Conduct and adheres to the EU Cloud Code of Conduct.
-
-
PDPA SG
Personal Data Protection Act in Singapore
-
-
PDPO HK
The Personal Data (Privacy) Ordinance in Hong Kong
-
-
DPTM SG
Data Protection Trustmark in Singapore
Associations & Frameworks
Alibaba Cloud proactively participates in the security compliance associations. While some of the requirements are not subject to attestation or certification schemes, Alibaba Cloud provides ready-to-use features, capabilities, or documentation to demonstrate compliance.
-
-
NISC
National Center of Incident Readiness and Strategy for Cybersecurity
-
-
FISC
Center for Financial Industry Information Systems
-
-
Trusted Cloud
The Trusted Cloud Label Issued by the Trusted Cloud Competence Network
-
-
MPAA
Motion Picture Association of America
Still have questions?
For requests related to security compliance and privacy, please contact the Trust Center
Contact Trust Center