Datadog Achieves ISO 27001 Certification and ISO 27017 and 27018 Compliance | Datadog

Datadog Achieves ISO 27001 Certification and ISO 27017 and 27018 Compliance

February 18, 2020

8:05 PM UTC

Published by Business Wire

contact

Martin Bergman

press@datadoghq.com

NEW YORK–(BUSINESS WIRE)–Datadog (Nasdaq: DDOG), the monitoring and analytics platform for developers, IT operations teams and business users in the cloud age, today announced it has achieved certification to the International Organization for Standardization’s information security standard 27001, and also complies with standards 27017 and 27018 (ISO/IEC 27001:2013, ISO/IEC 27017:2015, and ISO/IEC 27018:2019). The ISO 27000 family of standards is a widely recognized international set of standards detailing best practices for the management of information security and privacy.

Certification to these standards of the ISO 27000 family demonstrates Datadog’s commitment to the management of security, cloud services and privacy, and provides internationally recognized assurance that Datadog is committed to the security and privacy of its customers’ data. Datadog achieved multi-site certification, covering its primary office locations in New York and Paris.

“Achieving certification to this set of ISO 27000 standards is a noteworthy milestone, validating our approach towards security and privacy,” said James Kirk, Director of Information Security & Compliance at Datadog. “It demonstrates our commitment to continuously improving our security posture.”

The ISO/IEC 27000 family of standards aims to help organizations keep information assets secure. The best known standard, ISO/IEC 27001:2013, establishes requirements for the effective management of information security via an Information Security Management System (ISMS), and provides the foundations for an effective security program. The ISO/IEC 27017:2015 standard establishes additional requirements for the management of cloud infrastructure, while the ISO/IEC 27018:2019 standard provides additional requirements for effective management of privacy within cloud environments.

Additionally, Datadog maintains active SOC 2 Type I and Type II compliance programs, provides HIPAA compliant Log Management, and documents security controls on the Cloud Security Alliance’s Security, Trust & Assurance Registry. For more information, please email: security@datadoghq.com.

About Datadog

Datadog is the monitoring and analytics platform for developers, IT operations teams and business users in the cloud age. Our SaaS platform integrates and automates infrastructure monitoring, application performance monitoring and log management to provide unified, real-time observability of our customers’ entire technology stack. Datadog is used by organizations of all sizes and across a wide range of industries to enable digital transformation and cloud migration, drive collaboration among development, operations and business teams, accelerate time to market for applications, reduce time to problem resolution, understand user behavior and track key business metrics.

Forward-Looking Statements

This press release may include certain “forward-looking statements” within the meaning of Section 27A of the Securities Act of 1933, as amended, or the Securities Act, and Section 21E of the Securities Exchange Act of 1934, as amended. These forward-looking statements reflect our current views about our plans, intentions, expectations, strategies and prospects, which are based on the information currently available to us and on assumptions we have made. Actual results may differ materially from those described in the forward-looking statements and are subject to a variety of assumptions, uncertainties, risks and factors that are beyond our control, including those risks detailed under the caption “Risk Factors” and elsewhere in our Securities and Exchange Commission filings and reports, including the Quarterly Report on Form 10-Q filed with the Securities and Exchange Commission on November 13, 2019, as well as future filings and reports by us. Except as required by law, we undertake no duty or obligation to update any forward-looking statements contained in this release as a result of new information, future events, changes in expectations or otherwise.