Personal data cloud

Personal data cloud

CROC Cloud offers a full set of security tools, services and documents to comply with personal data processing requiremenrs set by Russian Personal Data Law (152-FZ)

Key features

Any personal data protection

Any personal data protection

CROC Cloud has been certified for compliance with Federal Law 152-FZ and Order 21 adopted by the Russian Federal Service for Technical and Export Control (FSTEC), and thus can securely process personal data of up to protection level 1 inclusively.
Compliance with information security standards

Compliance with information security standards

CROC Сloud is PCI DSS 3.2 compliant and its information security management system meets ISO/IEC 27001:2013 and ISO/IEC 27017:2015 (for cloud services) requirements.
Threat modeling and personal data protection documentation

Threat modeling and personal data protection documentation

We develop threat models for personal data information systems (PDIS) and draft certificates defining protection levels of personal data, as well as other documentation, to help you comply with the Russian personal data legislation.
PDIS protection

PDIS protection

Let us assist you with the selection, installation, and setup of PDIS protection tools: antivirus software, firewall, security analysis, communication channel protection, intrusion detection, protection against unauthorized access, web application security, and Anti-DDoS. All the above is available as a service with technical support and administration.
PDIS compliance assessment and certification

PDIS compliance assessment and certification

Our team checks security measures for regulatory compliance in terms of personal data security and helps get PDIS certified.
24/7 support

24/7 support

Our experts are always ready to set up, maintain, and operate your information security systems and services in CROC Cloud in any mode convenient for you.

How to get started
and ensure full protection of your personal data

Step 1
Deploy the cloud infrastructure
Sign up, add users, and create needed resources. Learn more
Step 2
Migrate PDIS to the cloud
Decide how many PDIS will be hosted in CROC Cloud and migrate them.
Step 3
Determine protection measures for your PDIS
Analyze relevant security threats and your PDIS protection level.
Step 4
Establish personal data protection
Activate security services you need and prepare a set of PDIS protection documents with our help.
Step 1
Deploy the cloud infrastructure
Sign up, add users, and create needed resources. Learn more
Step 2
Migrate PDIS to the cloud
Decide how many PDIS will be hosted in CROC Cloud and migrate them.
Step 3
Determine protection measures for your PDIS
Analyze relevant security threats and your PDIS protection level.
Step 4
Establish personal data protection
Activate security services you need and prepare a set of PDIS protection documents with our help.
FAQ
Is a secure cloud enough to comply with Federal Law 152-FZ?
No, it is not. You are to use a secure cloud, but there are some other things to be done.
Although CROC Cloud features a secure virtual infrastructure, PDIS should also be protected at the operating system, database, and application levels. CROC information security experts will help you design security architecture and select protection tools, check your PDIS compliance, prepare the required regulatory documents and guidelines, and bring your company activities in line with Federal Law 152-FZ.
How do I know what protection level is required for personal data?
Personal data processed in information systems must be protected in line with their protection level. Personal data protection level is established by Russian Government Decree No. 1119, depending on a personal data category, the number of personal data subjects involved, and relevant threats. There are four personal data protection levels in total from 4 to 1.
Can you tell me personal data of what categories may go to CROC Cloud?
CROC Cloud can host personal data of any category or protection level. CROC Cloud has been certified for compliance with Federal Law 152-FZ and Order 21 adopted by the Russian Federal Service for Technical and Export Control (FSTEC), and thus can securely process personal data of up to protection level 1 inclusively.
What personal data protection documents can you deliver for PDIS hosted in CROC Cloud?
CROC specialists develop a set of documents (local regulatory acts) to confirm the protection of personal data in PDIS, including:

  • Draft statement defining the protection level of personal data in PDIS,
  • Threat model for personal data being processed in PDIS (including a security violator model),
  • PDIS description,
  • Statement certifying that protection tools employed in PDIS comply with the personal data security requirements (including recommendations on improving personal data processing and protection in PDIS).
There can be more documents if the specifics of PDIS hosted in CROC Cloud or personal data processing requires so.

Our specialists also can:

  • Assess protection measures, or help get your PDIS certified, for compliance with personal data security requirements,
  • Bring your company activities in compliance with Federal Law 152-FZ.
01

CROC Cloud May Update

You can now create snapshots from volume versions, increase volume size in Kubernetes and filter resources by main parameters.
02

Automatically scale with the new Auto Scaling Groups

This new service allows you to automatically adapt to load changes by adding or deleting instances in a few minutes.
03

Introducing Launch Templates and Related API Methods

Launch templates streamline the launch of instances of the same type and minimize the risk of configuration errors when deploying them.

04

Volume Versions, а New Feature of CROC Cloud

CROC Cloud introduces a new feature, Volume Versions, that you can use to restore your volume content instantly to the original disk.
05

Integrated database monitoring and other CROC Cloud updates

We would like to share our latest updates and some immediate plans.
06

Ansible Dynamic Inventory support and other update of CROC Cloud

You can now deploy Kubernetes clusters version 1.20.9 in the CROC Cloud. 
Any questions?
Fill in the form and a CROC expert will get in touch with you soon

About CROC Cloud Services

CROC Cloud Services is a standalone CROC business unit that offers cloud and managed В2В services.
24/7
10-minute SLA
12 years
in the cloud market
750+
customers across various industries
№1
in cloud service quality (Cnews, 2020)
scrollup