Data security at EINO
Data security is our top priority. EINO sets the highest standards to protect and securely manage your data. Find out all about our measures and safeguards here.
Your data security
Your data is safe with EINO. We use state-of-the-art encryption, carefully selected hosting service providers and strict internal security protocols. This is how we create a digital vault that protects your information.
Our cloud service provider
EINO uses the infrastructure of OVHcloud, the leading European cloud provider. OVHcloud meets the highest security requirements and is certified according to ISO 27001, 27017, 27018 and many other security standards.
Where your data is located
EINO stores your data on high-performance servers in Frankfurt am Main. The data is stored in the cloud so that you can access it securely at any time and from anywhere. Our hosting partner OVHcloud offers a reliable and secure infrastructure that optimally protects your data.
Safety standards and certifications
The security of the infrastructure we use is guaranteed by numerous internationally recognized security standards. These ensure that your data is always secure and protected.
ISO 27001 / 27017 / 27018
Certification and ISMS for information security management for cloud services in accordance with ISO/IEC 27001:2013
ISO 27701
Certification and PIMS (Personal Information Management System) for the management of security in the processing of personal data ISO/IEC 27701:2019
DSGVO
Compliance with the General Data Protection Regulation (GDPR) (EU Regulation 2016/679)
SOC 1, 2, 3
AICPA certification for the audit of financial reports in accordance with SSAE 16/ISAE 3402 Type 2
CSA STAR
Self-assessment according to proven procedures of the Cloud Security Alliance (CSA) level 1
CISPE
OVHcloud is a founding member of CISPE (Cloud Infrastructure Services Providers in Europe) and has signed the Code of Conduct.
Health data in Europe
OVHcloud offers legally compliant hosting of health data of citizens from Germany, France, England, Italy and Poland.
PCI DSS
PCI DSS 3.2 PSP Level 1 certification for the protection of credit card information
EBA
Compliance with the Outsourcing Guidelines of the European Banking Authority (EBA) for financial service providers in Europe
SWIPO (Switching Cloud Providers and Porting Data)
Signatory of the SWIPO Code of Conduct on IaaS (“SWIPO IaaS Code of Conduct”) on the portability of cloud services
C5
Catalogue of criteria (catalogue of criteria for compliance with cloud computing)
You can find out more about OVHcloud’s security certifications here.
Our commitment to data protection
The data processing agreement (DPA) governs the responsibilities and obligations between you as the controller and us as the processor. EINO undertakes to process your personal data exclusively for the agreed purposes and to take comprehensive protective measures.
- No extra AV contract required: You automatically agree to the AV contract when you register with EINO.
- Availability of the AV contract: You can find the contract at any time in your account under ‘Legal information’ and download it there.
Obligations for companies
When using EINO in your company, you are obliged to fulfil information obligations such as employee information in accordance with Art. 13 GDPR and documentation in the processing directory in accordance with Art. 30 GDPR.
Do you have further questions about data protection?
We will be happy to answer them personally. You can contact our external data protection officer Mag.a iur. Elisa Drescher at office@scaleline-ltd.com at any time with questions about data protection. (Please refer to ‘EINO’ when contacting us).