Question

Security & Compliance Certification

List the security and compliance certificates DO services comply with? For Example- PCI & HIPAA.


Submit an answer
Answer a question...

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Heather Cannon
DigitalOcean Employee
DigitalOcean Employee badge
July 30, 2024
Pinned Answer

Hi all,

A quick update to this question here.

We are excited to announce that DigitalOcean customers are now able to host electronic Protected Health Information (ePHI) on select DigitalOcean Covered Products.

Additional details about Covered Products can be found at our HIPAA Information Site.

Customers who wish to process HIPAA workloads on DigitalOcean Covered Products must execute DigitalOcean’s Business Associate Agreement (BAA) and sign up for either Standard or Premium Support. Existing customers can request a BAA through their Customer Success representative, if applicable, or by contacting Sales. New customers can request a BAA by contacting Sales.

Thank you for being a valued member of the DO community!

Andrew SB
DigitalOcean Employee
DigitalOcean Employee badge
May 26, 2016

Moderator update (2021): Our certifications are now available via our Trust Platform at https://www.digitalocean.com/trust/certification-reports/


From our FAQ, here is a current list of our certifications:

  • Our NYC1 facility is SSAE16 SOC-1 Type II certified.
  • Our NYC2 facility is SSAE16 SOC-2 Type II certified.
  • Our NYC3 facility is SSAE16 SOC-2 and SOC-3 compliant.
  • Our AMS2 facility is ISO27001:2005 and ISO9001 certified.
  • Our AMS3 facility is ISO9001, ISO27001, ISO14001, ISO50001 and SSAE16 Type II certified
  • Our SFO1 facility is SSAE16 SOC-1 Type II certified.
  • Our SGP1 facility is ISO27001:2005 certified.
  • Our LON1 facility is ISO9001:2008, ISO27001, and SSAE16 / ISAE 3402 certified.
  • Our FRA1 facility is ISO9001:2008, ISO27001:2005, and ISO22301:2012 certified.
  • Our TOR1 facility is SSAE16 SOC-1 and SOC-2 certified.

If you need more detailed information, please feel free to reach out directly to the support team via ticket or our contact form.

This comment has been deleted

    Become a contributor for community

    Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

    DigitalOcean Documentation

    Full documentation for every DigitalOcean product.

    Resources for startups and SMBs

    The Wave has everything you need to know about building a business, from raising funding to marketing your product.

    Get our newsletter

    Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

    New accounts only. By submitting your email you agree to our Privacy Policy

    The developer cloud

    Scale up as you grow — whether you're running one virtual machine or ten thousand.

    Get started for free

    Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

    *This promotional offer applies to new accounts only.