Security & Compliance

From day one, we perceive security and compliance as one of the defining aspects of our company. That is why we have implemented ISO/IEC 27001 and ISO/IEC 27018–certified Information Security Management System, we perform legal compliance monitoring, and we are also regularly audited internally and externally. You can view our certificates, and find out how we ensure specific compliance requirements, by clicking one of the buttons below. 

Security & Compliance - ISO logo

ISO/IEC 27001, ISO/IEC 27018

International security standards that set out technical specifications of a management system that helps organizations in ensuring maximum information security and personal data protection in the cloud and on-premises.

Security & Compliance - GDPR logo


The General Data Protection Regulation on data protection and privacy enforced within the European Union and the European Economic Area.

Security & compliance - U.S. Privacy Laws

U.S. State Data Privacy Laws

The California Consumer Privacy Act (CCPA), the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA) and other state-level data privacy laws adopted in the United States.

HIPAA - Compliance center


HIPAA is a U.S. federal law that regulates the handling of personal health information.

Security & Compliance - PCI


Information security standard for organizations processing credit card payments.

Compliance - Microsoft 365 Certified

Microsoft 365 Certified

CodeTwo is the world’s first and only signature vendor whose cloud app infrastructure is periodically reviewed & pen-tested by Microsoft’s security specialists to make sure we follow industry-leading security, compliance and data handling practices.

Security & Compliance - Security Scorecard


CodeTwo services are monitored in real time against security threats by SecurityScorecard, a world leader in cybersecurity, to ensure compliance with all the latest security requirements and practices.

Security & Compliance - Cyber Essentials

Cyber Essentials

CodeTwo is certified by Cyber Essentials, a UK government-backed certification scheme overseen by National Cyber Security Centre (NCSC). It demonstrates our full commitment to cyber security.

Security & Compliance - Business Ethics

Business Ethics

The policies and principles that we observe to ensure the highest ethical and moral standards and prevent any corrupt practices while conducting our business activities.