HID Origo Compliance

Standards and Certifications


HID Global maintains an Information Security Management System, certified according to the ISO/IEC 27001 standard, to govern security controls for the development and ongoing operations of the HID Origo services.

For more information regarding our certifications and to download certificates, please visit HID Global Certifications.

Certified:

ISO 27001 Information Security Management

Ongoing:

SOC 2 Security, Confidentiality and Availability Report

Planned:

SOC 3 General Controls Report

ISO 27018 Privacy Data Protection

ISO 19086-1 Cloud Service Level Agreements

ISO 27017 Information Security for Cloud Services

Cloud Security Alliance Star Level 2

Regional Compliance Programs


Frameworks


HID Global leverages leading industry best practice guidelines and frameworks. We have also completed a Cloud Security Alliance Consensus Assessments Initiative Questionnaire (CAIQ), which can be downloaded from HID Global Certifications.

Implemented:

Cloud Security Alliance STAR Level 1

OWASP Top 10

Ongoing:

NIST 800-53

CIS Benchmarks

Planned:

NIST Cyber Security Framework

European Network and Information Security Agency


Laws and Regulations


HID Global reviews and updates our policies, procedures and operational practices to align with data protection and security regulations in the jurisdictions where we operate:

EU GDPR

Cloud Infrastructure Services Providers in Europe

China Cyber Security Act

Regional Privacy and Security Acts

Additionally, HID Global is Privacy Shield certified to enable EU originating personal data to be securely transferred from the EU and Switzerland to the United States where our servers are primarily located.