DATA, INDEPENDENT REVIEWS AND MORE...
Within the framework of our Global Transparency Initiative we have relocated our cyberthreat-related data storage and processing for a number of regions to Switzerland. We have also opened our first Transparency Center in the country.
- • SOC 2 audit by one of the Big Four accounting firms;
- • ISO 27001 certification for data security systems.
- Long and famous history of neutrality, similar to our policy for the detection of malware: we detect and remediate any malware attack
- Robust approach to data protection legislation
Transparency Centers serve as facilities for trusted partners to access reviews of the company’s code, software updates and threat detection rules, along with other activities. Through them, we provide governments and partners with information on our products and their security, including essential and important technical documentation, for external evaluation in a secure environment. They also serve as a briefing center where trusted stakeholders can learn more about the company’s portfolio, engineering and data processing practices.
Kaspersky Transparency Centers are operating in Kuala Lumpur, Madrid, Rome, São Paulo, Singapore, Tokyo, Utrecht, Woburn, and Zurich.
At all of Kaspersky’s Transparency Centers, the company provides the opportunity to compile the company’s software from its source code and compare it with the publicly available one.
No other cybersecurity provider has done anything as far reaching as this. In opening its Transparency Centers, Kaspersky makes a significant step towards becoming completely transparent about its protection technologies, infrastructure and data processing practices.
The Transparency Centers’ services are also available for remote access. To request access to the Transparency Center, please contact TransparencyCenter@kaspersky.com or visit the website .
Kaspersky continuously undertakes third-party assessments to verify the integrity of its solutions and processes. The company successfully completed the Service Organization Control for Service Organizations (SOC 2) Type 1 audit, conducted by one of the Big Four accounting firms.
The final report confirms that the development and release of Kaspersky’s threat detection rules databases (AV databases) are protected from unauthorized changes by strong security controls. To learn more and to request the Kaspersky SOC 2 Type 1 Report, please visit the website.
Kaspersky has also attained ISO27001 certification for its data services.
THE NEXT LEVEL OF DATA PROTECTION!
While Kaspersky’s current data protection practices are implemented in accordance with the highest industry standards and provide an extremely high level of security for any information processed by the company’s products and services, the company continuously improves its procedures for the protection of its customers’ data.
Malicious and suspicious files voluntarily shared by users of Kaspersky products in Europe, North and Latin America, the Middle East, and also several countries in Asia-Pacific are processed and stored in two data centers in Zurich. These provide world-class facilities in compliance with industry standards to ensure the highest levels of security.
In addition, it has been certified that Kaspersky applies a management system in line with the ISO/IEC 27001:2013 standard in the delivery of malicious and suspicious files using Kaspersky Security Network (KSN) infrastructure, as well as safe storage and access to these files in the company’s Distributed File System (KLDFS). In 2022, Kaspersky’s data services were re-certified with extended scope, with data services for both cyberthreat-related data and statistics now being covered by the certification. This include the company’s data centers in Zurich, Switzerland; Frankfurt, Germany; Toronto, Canada; and Moscow, Russia. Learn more here .
* Australia, New Zealand, Japan, Bangladesh, Brunei, Cambodia, India, Indonesia, South Korea, Laos, Malaysia, Nepal, Pakistan, Philippines, Singapore, Sri Lanka, Thailand and Vietnam.
Kaspersky publicly shares its approach in responding to requests from global government and law enforcement agencies for two categories: user data and technical expertise. We also disclose information about the number of such requests by country.
Law enforcement and government requests reports:
• Download Law enforcement and government requests report for 2020 and H1 2021.
• Download Law enforcement and government requests report for H2 2021.
• Download Law Enforcement and government requests report for H1 2022.
• Download Law Enforcement and government requests report for H2 2022.
Reports with requests received from users:
• Download the latest information about requests received from users for 2020 and H1 2021.
• Download the latest information about requests received from users for H2 2021.
• Download the latest information about requests received from users for H1 2022.
• Download the latest information about requests received from users for H2 2022.
LATEST NEWS ON THE GLOBAL TRANSPARENCY INITIATIVE
To keep you up-to-date with news on the relocation to Switzerland and the other activities that form part of our Global Transparency Initiative, we’ll be posting regular updates and progress reports in this section.