We generate recommendations that are highly sensitive for our customers and have an impact on competition. Therefore, data security and protection are of enormous importance to us.
Our services fully meet the stringent requirements of GDPR. That’s why we made our product the first to be certified by an independent institute. As such, we can guarantee that Open Telekom Cloud offers the very highest security standards.
The Open Telekom Cloud – 100% compliant with the GDPR
Because the data centers of the Open Telekom Cloud are located in Germany and the Netherlands, your data will never leave Europe. As a result, you can rest assured that the General Data Protection Regulation (GDPR) is fully complied with at all times.
Hosted in Germany and the Netherlands
Compliance with the GDPR depends on the location of a cloud provider’s data centers or where the personal data is stored and processed.
Does your business model only allow for data processing in Germany? Then we will provide your resources in the Open Telekom Cloud together with data backup in German data centers. Are you planning a project across multiple countries or do you value geo-redundancy with a distance of more than 200 kilometers between the data centers? Then our twin-core data center in Amsterdam is also available to you.
Specifications of the DSGVO checked by "TCDP 1.0"
As proof of German data protection, the Open Telekom Cloud was one of the first providers to receive the TCDP 1.0 certificate. The TCDP certification will be replaced in future by the "GDPR CC" certification, with the aim of applying European data protection in a sustainable manner. "GDPR CC" enables us to demonstrate the compatibility of your data processing processes with the data protection requirements of the DSGVO.
Compliance with industry-specific regulations (German Law)
– professional secrecy holders & social data
The Open Telekom Cloud facilitates the secure processing of data of professional secrecy holders according to § 203 of the German Criminal Code (StGB), e.g., elected attorneys, doctors, auditors or legal departments in companies and social data in accordance with Section 35 of the German Social Security Code I (§ 35 SGB I), e.g., data from health insurance companies or medical clearinghouses.
With the agreement on the protection of secrets, Telekom commits itself to the professional secrecy holder to keep the specially protected data secret and thus also takes into account the requirements under professional law for the use of cloud services. Find out more
Dr. Melanie Stein, attorney from Telekom's Law & Integrity department
The standard social data secrecy obligation for employees and service providers operating on the Open Telekom Cloud means that those providing social benefits can use the Open Telekom Cloud to host data covered by social service data secrecy in the cloud without any contractual adjustments or legal coordination. Find out more
Antje Rom, in-house lawyer at Deutsche Telekom
Our certifications
To meet the very latest security and data protection requirements, all of our services are subject to strict rules and are regularly checked by independent specialists.
Independent certifications
Privacy and security assessment
PSA takes an integral part of ensuring data privacy and security for our customers, which is validated in the ISO27001 Audits by DEKRA.
Find out more
TCDP 1.0
Data protection requirement for order data processing certified by DEKRA.
Download certificate
SOC 1
The SOC 1 Report (System and Organization Controls Report) focuses on internal control over financial reporting.
SOC 2
The SOC 2 report focuses on security, availability, processing integrity, confidentiality, and privacy of a system.
BSI C5
The BSI Cloud Computing Compliance Criteria Catalog (BSI C5 for short) describes the minimum requirements for information security for cloud services.
Contact us, if you have any questions to the above reports.
ISO 27000 Family
ISO/IEC 27001
Certification of establishing, implementing, maintaining and continually improving an information security management system (ISMS).
Download certificate
ISO/IEC 27017
Certification of additional information security controls for the use of cloud services as part of the ISO/IEC 27000 family of standards.
Download certificate
ISO/IEC 27018
Certification of protection of personally identifiable information (PII) in public clouds acting as PII processors with a Data Protection Management.
Download certificate
ISO/IEC 27701
Certification of privacy extension to ISO/IEC 27001 to establish, implement, maintain, and continually improve a privacy information management system (PIMS).
Available Q4 2022
Other ISO Certifications
ISO 9001
Certification of establishing, implementing, maintaining and continually improving a quality management system (QMS).
Download certificate
ISO 14001
Certification of establishing, implementing, maintaining and continually improving an environmental management system (EMS).
Download certificate
ISO/IEC 20000-1
Certification of establishing, implementing, maintaining and continually improving a service management system (SMS).
Download certificate
ISO 22301
Certification of establishing, implementing, maintaining and continually improving a business continuity management system (BCMS).
Download certificate
Telekom certifications
-
![Open Telekom Cloud Quotation Florian Schild]( "Open Telekom Cloud Quotation Florian Schild")
The multi-certified data centers, the high level of data protection and Deutsche Telekom as a reliable and reputable partner convinced us.
Florian Schild, founder and CEO of boot.AI
What we mean by security
Take advantage of our consulting services!
Our experts will be happy to help you.
We will answer any questions you have regarding testing, booking and usage – free and tailored to your needs. Try it out today!
Hotline: 24 hours a day, seven days a week
0800 33 04477
from Germany
+800 33 04 47 70
from abroad
* Voucher can be redeemed until December 31, 2021. Please contact us when using the voucher for booking. The discount is only valid for customers with a billing address in Germany and expires two months after conclusion of the contract. The credit is deducted according to the valid list prices as per the service description. Payment of the credit in cash is excluded.