Security & ComplianceProcurement-grade
Procurement-grade
transparency.
An ISO 27001 certification as a logo is weak. Here you'll find the scope, the working groups we co-author in, the standards we support, and the documents you need for procurement.
ISO 27001 certification
Details on request- Scope
- Hosting, development and operation of charging-infrastructure software
- Certification date
- On request
- Audit cycle
- Yearly · 3-year recertification
- Certifying body
- On request
- Certificate number
- On request
Memberships & working groups
- OCA, Open Charge Alliance
- Member · OCPP working group · co-author
- EVRoaming Foundation
- Member · OCPI working group · 2.3 co-author
- Why
- We co-author the protocols the market uses, not a passive observer.
Supported standards
- OCPP
- 1.6 + 2.0.1 native
- OCPI
- 2.1.1 / 2.2.1 / 2.3
- ISO
- ISO 27001 (information security)
- GDPR
- Fully compliant · DPA on request
- BIO
- Mappable · reference on request
- OAuth/OIDC
- SSO + token-exchange for partners
Datacenter & infrastructure
Details on request- Hosting
- On request
- Multi-region
- Active-active failover
- Data residency
- EU-only data path · [confirmation]
- Backup
- On request
- Monitoring
- 24/7 NOC · pager rotation
Sub-processors
Details on request- Hosting
- On request
- On request
- Logging
- On request
- Monitoring
- On request
- Full list
- On request · part of DPA
DPA / GDPR / BIO
- Data Processing Agreement
- Standard DPA on request, sample available
- GDPR
- Fully compliant, DPO assigned
- BIO
- Mappable for public tenders
- Privacy policy
- Documented per product