REGULATORY COMPLIANCE

Rest Assured, We've Got You Covered

Wasabi meets or exceeds all major industry compliance standards and government regulations. 

Try Free
HIPAACJISFERPA GDPR & UK GDPRTPNSEC

Wasabi third-party compliance

Our storage technology is deployed in top tier data centers certified for SOC 2, ISO 27001, and PCI-DSS.

Datacenter Documentation
PCI-DSS Report

HIPAA

Health Insurance Portability and Accountability Act (HIPAA)

Wasabi stores protected health information (PHI) and electronic protected health information (ePHI) in accordance with HIPAA and the Health Information Technology for Economic and Clinical Health Act (HITECH)—as administered by the U.S. Department of Health and Human Services (HHS). Wasabi uses security best practices and technologies to ensure physical security of its facilities and to maintain the privacy and integrity of electronic data and digital records.

Learn More About Security
Solution Brief Fallback
Solution brief

Affordable, secure, and compliant storage for healthcare and life sciences

CJIS

Criminal Justice Information Services (CJIS)

With Wasabi, you can store data compliantly with standards set for data privacy, security, durability, and protection for Criminal Justice Information (CJI) and other critical information, as required by CJIS, a division of the U.S. Federal Bureau of Investigation (FBI).

E-Book Fallback
ebook

Secure CJIS for all law enforcement agencies

FERPA

Family Educational Rights and Privacy Act (FERPA)

Wasabi cloud storage allows educational institutions to comply with the mandated requirements of FERPA, which imposes specific technical and administrative requirements for education IT planners, InfoSec organizations, and compliance officers who receive any aid from the U.S. Department of Education.

E-Book Fallback
ebook

Support for FERPA compliance

GDPR & UK GDPR

EU & UK General Data and Protection Regulation (GDPR)

Store and maintain personal data in compliance with the GDPR mandates for both the European Union (EU) and United Kingdom (UK). ​The laws impose strict data privacy and security rules for businesses and IT service providers, with significant potential for fines for violations.

E-Book Fallback
ebook

GDPR Compliance with Wasabi

TPN

Trusted Partner Network (TPN)

The Trusted Partner Network is a global media & entertainment community network and security initiative operated by the Motion Picture Association (MPA). Wasabi is pursuing all certifications necessary to remain compliant for organizations with varying multi-media and motion picture assets and requirements.

This page will be regularly updated as Wasabi works towards TPN certification. Wasabi has engaged the [re]DESIGN Group to manage the audits and assessments needed to maintain TPN status.

SEC

U.S. Securities and Exchange Commission (SEC) & Securities and Exchange Act (SEA)​

Effective on May 1, 2023, the SEC, SEA's updated rules require that third-party record-keeping services provide an undertaking letter to its customer organizations. Contact us to request an SEC alternate undertaking letter per 17 CFR 240.17a 4(i)(1)(ii)(A).

FAQ Help
Documentation

Data access restrictions in the USA for Wasabi users

More questions about compliance?

Talk to an Expert
Legal Information