Built on Operational Excellence to Deliver Compliance Assurance

Compliance is not about ticking the boxes. It’s about securing the business of those who trust us with their critical data and processes every day.

Confidence in Confidentiality

Communication is business critical. That’s why Retarus takes comprehensive measures to keep your data protected.

We Got You Covered

Comply to the evolving landscape of international, regional and industry-specific regulations with our independently audited and certified products.

Trust the Process(ing)

We take strict security and compliance measures that don’t compromise on performance with our regionally self-operated autonomous data centers.

Our Enterprise Level Data Privacy and Protection Is Based on Four Dimensions

Security: Protect What Matters

We are committed to maintaining the confidentiality of information by protecting data at the highest levels to fulfill our obligation to our customers.

Security framework and an information security management system (ISMS) audited according to ISAE 3000 SOC2 Type II and certified in accordance with ISO/IEC 27001
State-of-the-art technical and organizational measures (TOMs)
High standards for network, access, endpoint and security; our own data centers operated by our staff
Encryption of data in transit and where necessary at-rest

Reliability: Always On, Always Available

We designed our services for high performance and reliability, backed by high redundancy concepts on scalable platforms. Our global infrastructure delivers 99.99% uptime with comprehensive failover systems and continuous monitoring to ensure our services never miss a beat.

High availability service model operated by redundant and autonomous data centers and disaster recovery framework with business continuity management
24/7 real-time monitoring, service status page
Premium service management and support by Retarus staff
Adaptable SLAs to meet the requirements of your critical business processes

Compliance: Signed and Sealed

Retarus’ services support your efforts for compliance as part of your supply chain. Our Security Framework is based on best practices from the ISO 27000 series. For further local or industry specific certifications, such as ENS high certified (Spain) or TISAX (Germany, Automotive), please check our certification and regulations overview below.

Certified data centers
Comprehensive SOC 2 type II reporting covering test and report of the design and operating effectiveness of the internal control system and ISMS
External and independent audits or assessments for a variety of frameworks
Covering multiple local and industry-specific regulations and certifications

Privacy: Your Privacy, Our Priority

We safeguard your data privacy in accordance with local privacy laws and regulations with our local data processing regions. This enables the confidentiality, integrity, and availability of your data – anywhere in the world. #

Privately owned with European and American Headquarters
All systems and services are solemnly operated by Retarus staff
Dedicated regional data processing in private environments for each region (US, EU, APAC) with no cross-border data transfer
Data sovereignty thanks to complete control over stored and processed data which adheres to data protection standards like GDPR, or HIPAA for highly confidential Protected Health Information (PHI)
Privacy-by-Design, built-in protection of personal information (PI/PII)

External Audits and Certifications, and Relevant Regulations and Frameworks

Explore Our Network of Our International Datacenters

\

Frequently Asked Questions

How does the Retarus ISMS support the customer with certification and auditing?

Our certified ISMS and our security related state-of-the-art ICS is tested regularly on the design and operating effectiveness following the international audit standard ISAE. This helps our customers to integrate our reporting into their compliance framework and the SOC reports are designed for interacting with financial auditors of our customers.

Does Retarus offer compliance support for regulated industries?

Yes. We support healthcare (HIPAA, HITRUST), automotive (TISAX), finance (DORA), critical infrastructure (NIS2, KRITIS) and other industries to meet compliance requirements.

What certifications does Retarus hold for information security?

Retarus holds several key certifications, including ISAE 3000 SOC2 Type II and ISO/IEC 27001, ensuring a robust security framework for data protection. We are also ENS (high) certified in Spain, and comply with TX-RAMP security standards. For a full overview, also on industry specific or local view, please check our list of external audits and certifications, and relevant regulations and frameworks.

What steps does Retarus take to maintain the reliability of its services?

Retarus takes a broad range of technical and organizational measures to maintain a maximum of service reliability. This includes, but is not limited to, business continuity management, testing, redundant components and autonomous datacenters.

Do We Meet Your Requirements?

If you need a specific report or certificate for an own internal audit or security review, we provide you all documents according to your requirements.

Request reports and certificates