• ISO/IEC 27001
      • Compliance

        Comprehensive third party audited certifications.

    Microsoft Azure and Office 365 operated by 21Vianet are public cloud services independently operated in mainland China—run and sold by Shanghai Blue Cloud Technology (hereinafter refer to as “Blue Cloud”), a wholly-owned subsidiary of 21Vianet. The Azure and Office 365 technologies that Microsoft uses to serve other parts of the world have been licensed to 21Vianet, so Microsoft Azure and Office 365 operated by 21Vianet provide globally consistent service quality for customers.

    To help organizations comply with national, regional, and industry-specific requirements governing the collection and use of individuals’ data, 21Vianet offers comprehensive set of certifications and attestations.

    21Vianet accomplishes this breadth of compliance offerings with a two-pronged approach:

    • First, a team of 21Vianet experts works with our engineering and operations teams, as well as external regulatory bodies, to track existing standards and regulations, developing hundreds of controls for the product teams to build into our cloud services.
    • Second, because regulations and standards are always evolving, our compliance experts also anticipate upcoming changes to help ensure continuous compliance—researching draft regulations, assessing potential new requirements, and developing corresponding contro

    Microsoft Azure and Office 365 operated by 21Vianet comply with the international and industry-specific compliance standard ISO/IEC 20000 and ISO/IEC 27001, as well as the Information System Classified Security Protection standard that is managed by Ministry of Public Security of People’s Republic of China, GB 18030 Information Technology — Chinese Coded Character Set and Trusted Cloud Service (TCS) certifications. Ultimately, it is up to you to determine whether our services comply with the specific laws and regulations applicable to your business. To help you make these assessments, 21Vianet supplies the specifics about its security and compliance programs, including audit reports and compliance packages. In view of our promise on transparency, you can ask a third party that performs certification for the audit result and verify the implementation of multiple security control.

    ISO/IEC 20000 is the first international standard for IT Service Management. Microsoft Azure and Office 365 operated by 21Vianet focus on managing IT issues and identifying their internal relations through “IT service standardization”, then perform planning, implementation and supervision based on service level agreements and also emphasize interaction with customers. 21Vianet promises to carry out certification based on ISO/IEC 20000 (an international IT service standard for the IT service arena) every year. The ISO/IEC 20000 certificate confirms that 21Vianet has followed the IT service management requirements defined in this standard, and provided customers with efficient service and integrated management to identify and manage critical processes in IT service , which ensure that efficient IT service provided by 21Vianet meets the demand of customers and their business.

    ISO scope: IT service management system (ITSM), including establishment, implementation, operation, supervision, review, maintenance and improvement of the IT service management system.

    This certificate is issued by CESI and is available for you to review.

    Arrow | Navigate To Encryption Learn more

    ISO/IEC 27001 is one of world-leading security standards. Microsoft Azure and Office 365 operated by 21Vianet has implemented strict physical, logical, procedure and management control defined by ISO/IEC 27001. 21Vianet promises to carry out certification based on ISO/IEC 27001 (a widely applicable international information security standard) every year. The ISO/IEC 27001 certificate confirms that 21Vianet has implemented internationally recognized information security control measures defined in this standard, including information security management guidelines and general principles for activation, implementation, maintenance and improvement.

    ISO scope: Information security management system (ISMS), including management on operations, security and business procedure.

    This certificate is issued by CESI and is available for you to review.

    Arrow | Navigate To Encryption Learn more

    ISO/IEC 27018 is the first international standard focused on personal data protection in public cloud. Microsoft Azure and Office 365 operated by 21Vianet provide users with reliable protection in the accuracy, transparency and security of personal data processing, and protect the full life-cycle of personal information. 21Vianet will carry out certification based on ISO/IEC 27018(an international standard that mainly focused on the protection of personal data in public cloud) every year. The ISO/IEC 27018 certificate confirms that 21Vianet has implemented internationally recognized public cloud PII security control measures defined in this standard, allowing customers to have complete control over their data storage and usage, ensuring the privacy and security of customer data.

    ISO scope: Information security management system (ISMS), including information security management, privacy and compliance, covers infrastructure, security services/systems, operation support and data center infrastructure, as well as related personal information protection management.

    This certificate is issue by BSI and is available for you to review.

    According to GBT 22240-2008 Information Security Technology—Classification Guide for Classified Protection of Information System Security, the evaluation organizations authorized by the Ministry of Public Security (MPS) evaluate Microsoft Azure and Office 365 operated by 21Vianet based on GB/T 22239-2008 Information Security Technology—Basic Requirements for Classified Protection of Information System Security, and rate both Azure and Office 365 to Level 3 in terms of information security protection classification. Registration certifications are issued to Azure and Office 365.

    21Vianet adopts cutting-edge Azure and Office 365 technologies and has successfully obtained multiple Trusted Cloud Service Certifications with powerful localized operation capabilities, open platform, high-quality SLA, powerful data recovery capability and best customer returns.

    Trusted Cloud Service Certification is a cloud service quality evaluation system organized by the Trusted Cloud Service working group of Data Center Alliance (DCA) under the guide of MIIT. This certification aims to cultivate the Chinese public cloud service market, enhance users’ confidence on cloud services, protect certified cloud service providers and promote sound development of the market.

    Microsoft Azure operated by 21Vianet has passed audits and obtained Trusted Cloud Service Certifications of Virtual Machine, Cloud Storage, Cloud Database, Load Balancing, Cloud Engine and Cloud Backup. These services accept the evaluation of total 16 indexes in three classifications—data management, service quality and rights protection--in the SLA framework. With service availability up to 99.99%, the services provide 6 data backups on two datacenters, providing reliable, secure, flexible, efficient, and stable assurance for users.

    Office 365 operated by 21Vianet has also obtained Trusted Cloud Service Certifications of Business-Class Email (Exchange Online), File Sharing (SharePoint Online), Shared Calendar and Video Teleconference Service (Skype for Business Online) as well as the certification of “Security” and “User Experience” indexes. Office 365 operated by 21Vianet achieved "Trusted Cloud 2014-2015 Annual Industry Award” for office applications, which proofs Office 365 is providing first-class and reliable technology, safe and stable operations and perfect service system of norms.

    The test result is published on the website of Trusted Cloud Service Certification

    GB 18030 is the Chinese ideographic character set and encoding standard mandated by the Chinese government. Microsoft Azure and Office 365 operated by 21Vianet are certified as compliant with the mandatory part of this standard by the China Electronics Standardization Institute (CESI).

    ISO20000
    ISO27001
    TrustCloudAuth
    GB-18030
    ISO20000
    China TRUCS
    TrustCloudAuth
    GB-18030
    ISO20000

    ISO/IEC 20000

    ISO/IEC 20000 is the first international standard for IT Service Management. Microsoft Azure and Office 365 operated by 21Vianet focus on managing IT issues and identifying their internal relations through “IT service standardization”, then perform planning, implementation and supervision based on service level agreements and also emphasize interaction with customers. Learn more

    ISO27001

    ISO/IEC 27001

    ISO/IEC 27001 is one of world-leading security standards. Microsoft Azure and Office 365 operated by 21Vianet has implemented strict physical, logical, procedure and management control defined by ISO/IEC 27001. Learn more

    SLA

    DJCP

    the evaluation organization authorized by the Ministry of Public Security evaluates Microsoft Azure and Office 365 operated by 21Vianet, and rates both Azure and Office 365 to Level 3 in terms of information security protection classification. Registration certifications are issued to Azure and Office 365. Learn more

    TrustCloudAuth

    TRUCS

    21Vianet adopts cutting-edge Azure and Office 365 technologies and has successfully obtained Trusted Cloud Service certification with powerful localized operation capabilities, open platform, high-quality SLA, powerful data recovery capability and best customer returns. Learn more

    GB-18030

    GB 18030

    GB 18030 is the Chinese ideographic character set and encoding standard mandated by the Chinese government. Microsoft Azure and Office 365 operated by 21Vianet are certified as compliant with the mandatory part of this standard by the China Electronics Standardization Institute (CESI). Learn more