Ellipsis Drive leverages Google Cloud infrastructure for storing and hosting data. As such, we rely on Google Cloud Compliance & Regulations resources to make sure data hosted in Ellipsis Drive is protected according to the strict certifications and compliance standards of the EMEA region.

Our compliance standards include (but are not limited to):

• ISO 27001: 2024

• General Data Protection Regulation (GDPR)

• Cloud Computing Compliance Criteria Catalog (C5:2020)

• EU Cloud Code of Conduct

• EU Standard Contractual Clauses

• ISAE 2000 Type 2 Report (FINMA)

• NCSC - Cyber Essentials

• NCSC - Cloud Security

• Algemene Verordening Gegevensbescherming (AVG)

Our Cloud Armor includes:

• Enterprise-grade DDoS protection and WAF

• Detection and mitigation of attacks against Cloud Load Balancing workloads

• Adaptive Protection with ML-based mechanisms to help detect and block Layer 7 DDoS attacks

• Mitigation of OWASP Top 10 risks

• Bot management to stop fraud at the edge through native integration with reCAPTCHA Enterprise