Attestations & Certifications
Global
Alibaba Cloud adheres to international information security standards and is committed to using international best practices.
Regional
Alibaba Cloud adheres to all the domestic information security standards of the countries and regions where our cloud services are deployed.
Industry
Alibaba Cloud adheres to industry-standard practices, continually conducts self-assessment reviews, and has obtained all of the relevant industry certifications.
Data Protection & Privacy
Alibaba Cloud has completed independent cyber risk assessments to valid Alibaba Cloud’s security posture. Customers can leverage Alibaba Cloud’ third party cyber risk assessment report to reduce their supplier due-diligence burden.
-
GDPR (European Union) EU
The European Union General Data Protection Regulation (GDPR)
-
EU Cloud COC (European Union) EU
The European Union Cloud Code of Conduct (CoC)
-
PDPA (Singapore) SG
Personal Data Protection Act (PDPA)
-
PDPO (Hong Kong) HK
Personal Data (Privacy) Ordinance (PDPO)
-
PDPA (Malaysia) MY
Personal Data Protection Act (PDPA)
-
DPTM (Singapore) SG
The Data Protection Trustmark (DPTM)
-
APEC CBPR (Singapore) SG
The APEC Cross Border Privacy Rules (CBPR) System
-
APEC PRP (Singapore) SG
The APEC Privacy Recognition for Processors (PRP) System
Associations
Alibaba Cloud is a proud member of and proactively participates in security and privacy associations to share and collaborate the industry best practices.
-
Trusted Cloud
Trusted Cloud Competence Network
-
MESA
Media & Entertainment Services Alliance
-
DPP
The Digital Production Partnership
-
SRIW
Self-regulation of Information Economy
-
IAPP
International Association of Privacy Professionals (IAPP)
-
EU Cloud CoC
The European Union Cloud Code of Conduct (CoC)
-
W3C
The World Wide Web Consortium (W3C)
Still have questions?
For requests related to security compliance and privacy, please contact the Trust Center
Contact Trust Center