Compliance

Certified compliance and security.

OtterStorage is built on recognized security frameworks with European data sovereignty, so that your compliance is ours too.

✓ Certified

ISO/IEC 27001

Information Security Management System (ISMS). Risk management, security controls, and continuous improvement across the entire platform.

✓ HIGH Category

ENS — Spanish National Security Framework

ENS conformance at High Category, the level required of critical systems in the Spanish public sector and their providers.

Coming soon

NIS2

European cybersecurity directive for essential sectors. Not yet transposed/available in Spain; we will be ready as soon as it comes into force.

✓ Compliance

DORA

Digital Operational Resilience Act for the financial sector. Immutability (Object Lock), Legal Hold, and auditable logs to support your DORA compliance.

GDPR and data sovereignty

You choose the region for your data, with options in the EU. Encryption in transit and at rest, per-bucket keys, and a DPA available.

EU GDPR Encryption

How we help you

Controls that support your compliance.

Immutability

Object Lock (WORM) and per-bucket Legal Hold.

Traceability

Activity logs and metrics for auditing.

Layered security

Encryption, per-bucket keys, and durability through Erasure Coding. More.

Need compliance documentation?

We provide certificates, DPAs, and technical details for your audit.

Request documentation View security