Certifications

Certified Security, Certified Trust

CYBERTEC PostgreSQL International GmbH maintains internationally recognised certifications that validate our commitment to information security, environmental responsibility, and automotive-grade data protection. These are not badges on a website — they are audited, verified commitments backed by annual surveillance audits.

ISO 27001Certified

ISO 14001Certified

TISAXCertified

ISO 27001

Information Security Management System

What It Is

ISO/IEC 27001 is the international standard for information security management systems (ISMS). It provides a systematic framework for managing sensitive company and customer information, ensuring it remains secure through a comprehensive set of security controls covering people, processes, and technology.

Why We Have It

As a company that manages critical database infrastructure for enterprises across Europe, information security is not optional — it is foundational. Our ISO 27001 certification demonstrates that we have implemented and continuously maintain a best-practice ISMS that covers our entire hosting operation, from physical data centre access to employee security training to incident response procedures.

Why It Matters for You

Provides assurance that your data is handled according to internationally recognised security standards

Satisfies due diligence requirements for vendor risk assessments and procurement processes

Required by many regulated industries (finance, healthcare, government) as a baseline for third-party providers

Demonstrates continuous improvement through annual surveillance audits by independent certification bodies

Covers the entire lifecycle: from access control and encryption to incident management and business continuity

Simplifies your own compliance journey — DORA, NIS2, and GDPR all reference ISO 27001 as a relevant standard

Key Controls We Implement

Access ControlRole-based access, MFA, privileged access management

CryptographyAES-256 encryption at rest, TLS 1.3 in transit, BYOK support

Physical SecurityEU data centres with biometric access, 24/7 surveillance

Operations SecurityChange management, vulnerability scanning, penetration testing

Incident Management24/7 monitoring, defined escalation paths, post-incident reviews

Business ContinuityTested disaster recovery, RPO/RTO guarantees, geo-redundancy

Supplier RelationsVetted European suppliers, DPAs, regular audits

ComplianceRegular internal audits, management reviews, corrective actions

Regulatory relevance: ISO 27001 is explicitly referenced in DORA (Art. 15), NIS2 (Art. 21), and is recognised by GDPR supervisory authorities as demonstrating appropriate technical and organisational measures under Art. 32.

ISO 14001

Environmental Management System

What It Is

ISO 14001 is the international standard for environmental management systems (EMS). It provides a framework for organisations to manage their environmental responsibilities systematically, reducing their environmental footprint while maintaining operational efficiency.

Why We Have It

Data centres and IT operations consume significant energy. As a responsible European technology company, we believe that delivering world-class PostgreSQL hosting should not come at the expense of the environment. Our ISO 14001 certification demonstrates our commitment to minimising energy consumption, reducing waste, and continuously improving our environmental performance.

Why It Matters for You

Supports your organisation's ESG reporting and sustainability commitments

Demonstrates that your IT infrastructure provider takes environmental responsibility seriously

Increasingly required in public procurement and enterprise vendor assessments across Europe

Aligns with the EU Corporate Sustainability Reporting Directive (CSRD) supply chain requirements

Ensures efficient resource utilisation, which translates to optimised hosting costs

Contributes to your Scope 3 emissions reduction targets through a certified green supply chain

Our Environmental Commitments

Renewable Energy100%

All data centres powered by certified renewable energy sources

PUE Target<1.3

Power Usage Effectiveness well below industry average of 1.58

Hardware LifecycleCircular

Responsible disposal and recycling of all IT equipment

Carbon ReportingTransparent

Annual environmental impact reports available to customers

TISAX

Trusted Information Security Assessment Exchange

What It Is

TISAX is the automotive industry's standard for information security, developed by the German Association of the Automotive Industry (VDA) and managed by ENX Association. It is based on the VDA Information Security Assessment (ISA) catalogue, which extends ISO 27001 with automotive-specific requirements for prototype protection, data protection, and connected vehicle security.

Why We Have It

The automotive industry processes highly sensitive data — from connected vehicle telemetry to prototype specifications to supply chain logistics. OEMs and Tier-1 suppliers require all IT service providers to demonstrate TISAX compliance before granting access to their systems. Our TISAX certification enables automotive enterprises to use CYBERTEC Scalefield Hosting without additional security assessments.

Why It Matters for You

Mandatory for any IT service provider working with European automotive OEMs and suppliers

Eliminates the need for individual security assessments by each automotive customer

Covers Assessment Level 3 (AL3) — the highest level for handling strictly confidential information

Results are shared via the ENX portal, giving automotive partners instant verification

Extends beyond ISO 27001 with specific controls for prototype and connected vehicle data protection

Recognised across the entire European automotive supply chain from OEM to Tier-N

TISAX Assessment Scope

Information SecurityFull VDA ISA catalogue compliance

Prototype ProtectionPhysical and digital safeguards for pre-release data

Data ProtectionGDPR-aligned processing with automotive-specific controls

Connected VehiclesSecure handling of telemetry, OTA updates, and V2X data

Third-Party ManagementAudited supply chain security practices

Assessment LevelAL3 — highest level, on-site audit by accredited provider

Industry context: TISAX is administered by the ENX Association and recognised by all major European automotive OEMs including Volkswagen Group, BMW, Daimler, and their entire Tier-1 supply chain.

Why It Matters

Why Certifications Matter for Your Organisation

In regulated industries, your infrastructure provider's certifications directly impact your own compliance posture.

Simplified Vendor Assessment

Our certifications pre-answer the majority of questions in vendor risk assessments, accelerating your procurement process from months to weeks.

Regulatory Compliance

ISO 27001 is referenced by DORA, NIS2, and GDPR as a benchmark for adequate security measures. Using a certified provider strengthens your compliance argument.

International Recognition

ISO standards and TISAX are recognised globally. Whether you operate in the EU, UK, or Switzerland, our certifications are accepted by regulators and auditors.

Continuous Improvement

Certifications require annual surveillance audits and periodic recertification. This ensures we don't just meet standards once — we continuously raise the bar.

Supply Chain Assurance

Your auditors will look at your suppliers. Our certifications provide documented evidence that your database infrastructure meets the highest security standards.

ESG and Sustainability

ISO 14001 demonstrates environmental responsibility. Increasingly required for public tenders and corporate sustainability reporting under CSRD.

Need Certification Documentation?

We provide certification documentation, audit reports, and compliance questionnaire responses to prospective and existing customers upon request.

Request Documentation View Compliance Details

A service by CYBERTEC PostgreSQL International GmbH