Website
Community
Blog
Developer
Rocket.Chat Documentation
Installing and Updating
Getting Support
Development Docs
Guides
User Guides
Rocket.Chat Administrator Guides
Omnichannel Guides
Mobile Guides
Roles in Rocket.Chat
Security and Compliance Guides
Compliance Resources and Certifications
Security fixes and updates
End-to-End Encryption Specifications
Apps Guides
Brand and Visual Guidelines
Contributors
How can I help?
Contributor Code of Conduct
Google Summer of Code
Google Season of Docs
Github Sponsorship
Rocket.Chat SaaS
Cloud Account
FAQ
Legal
Terms of Service
Master Services Agreement for Self Managed Workspaces
Privacy Policy
Code of Conduct for our services
GDPR
Censorship and Harmful Content
Guidelines for Law Enforcement
Server Lookup
DMCA Policy
Powered by GitBook

Compliance Resources and Certifications

On this page, we provide you with resources around compliance of Rocket.Chat with industry standards, regulations and best practices. Also our certifications are listed here. Contact our specialists for further information under [email protected].

Each resource is tagged with a section to indicate the scope. Some resources only apply to our hosted services, others to our self-managed product or else.

Compliance certifications

ISO 27001 certification

Scope: Hosted Offering, App Store, Software Development

Rocket.Chat is ISO 27001 certified. ISO 27001 is an internationally recognized standard for information security management systems. Our organization is audited on an annual basis by an independent third-party auditor to verify the design and operational effectiveness of the management system.

  • Certificate:

  • Name: ISO 27001 Information Security Management Systems

  • Statement of applicability (link)

    • contains a list of controls and whether they are applicable or not

  • Certifying body: QMS Certification Services

  • Validity: July 2020 - July 2023

  • Use cases for Rocket.Chat users: due diligence, security review, regulatory compliance, internal audit, supply chain audit

Industry-specific resources

Cloud Security Alliance (CSA)

Scope: Hosted Offering

Rocket.Chat has published a pre-filled questionnaire in the STAR-registry of the CSA here. The CSA is a leading organization in the standardization and improvement of security in cloud computing. The Consensus Assessments Initiative Questionnaire (CAIQ) is a self-assessment that is updated on an annual basis.

  • Name: Consensus Assessments Initiative Questionnaire

  • Last Update: October 2019

  • Use cases: due diligence, security review

Country-specific resources

​

Guides - Previous
Security and Compliance Guides
Next
Security fixes and updates
Last updated 7 months ago
Edit on GitHub
Contents
Compliance certifications
ISO 27001 certification
Industry-specific resources
Cloud Security Alliance (CSA)
Country-specific resources