ISL Online Certifications and Compliance
ISL Online (XLAB) is committed to complying with all applicable laws and regulations, maintaining the highest standards of security, and adhering to our code of conduct, as well as our corporate social responsibility and sustainability policies.
ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection
Certified since 2017, this internationally recognized standard provides a robust framework for establishing, implementing, and continually improving an Information Security Management System (ISMS), ensuring effective risk management, enhanced data protection, and greater trust and confidence from customers and partners.
ISO 14001:2015 Environmental management systems
Certified since 2024, ISO 14001 demonstrates our commitment to sustainability and reducing our environmental footprint. This standard drives continuous improvement in our Environmental Management System (EMS), emphasizing efficient resource use, waste minimization, and compliance with environmental regulations.
ENS: Spanish National Security Frameworklink
Certified with High-Level Security Measures since 2024, the ENS (Esquema Nacional de Seguridad) certification showcases our dedication to maintaining the highest standards of cybersecurity and regulatory compliance. Aligned with the SOG-IS framework, it facilitates a unified approach to managing risks and protecting sensitive data.
Driving Sustainability and Social Impact
ESG
Our commitment to ESG principles drives sustainable practices, ethical governance, and positive social impact. By integrating ESG into our operations, we help you meet sustainability goals, enhance stakeholder trust, and contribute to a better future.
Protecting Personal Data
GDPR
Developed and based in the EU, our company and products fully comply with the General Data Protection Regulation (GDPR), ensuring the highest standards of data protection and privacy for you and your users.
Creating Inclusive Digital Experiences
WCAG/Accessibility
Our products allow organizations to achieve and maintain compliance with the Web Content Accessibility Guidelines (WCAG), ensuring accessible digital experiences for all users, including those with disabilities.
Strengthening EU Cybersecurity
NIS-2
Essential and important entities can maintain compliance with the NIS-2 Directive, ensuring robust cybersecurity, improved incident management, and alignment with EU regulatory requirements specific to critical infrastructure and digital services.
Safeguarding Healthcare Data
HIPAA
Ensure the privacy and security of sensitive patient data while using our solutions. A dedicated data protection team can assist you with the documentation required to demonstrate compliance.
Digital Operational Resilience Act
DORA
We enable our financial customers to maintain compliance with the Digital Operational Resilience Act (DORA), ensuring their digital operations remain secure, resilient, and aligned with evolving regulatory standards.
Strengthening Data Security and Privacy
SOC 2
Service organizations can maintain compliance with the SOC 2 framework, ensuring robust data security, improved risk management, and alignment with industry standards for confidentiality, integrity, and availability of customer information.
Strengthening Payment Security
PCI DSS
Organizations handling cardholder data can maintain compliance with the PCI DSS framework, ensuring secure payment processing, enhanced fraud prevention, and alignment with industry standards for data protection and transaction security.
UK Cyber Compliance
Cyber Essentials
By maintaining Cyber Essentials certification, we ensure that UK-based customers can trust their data is protected in line with UK security standards, government requirements, and industry best practices.
Customer Protection Systemlink
ISL Online's Customer Protection System (CPS) is designed to proactively detect and prevent suspicious remote connection activities, safeguarding users from potentially harmful actions. While CPS enhances your security, staying vigilant, understanding potential risks, and recognizing the signs of scams are essential to ensuring your protection.
Misuse preventionIndustry Standards Compliancelink
With secure data handling, encryption, proactive risk management, and independent audits, ISL Online guarantees your data's confidentiality, integrity, and availability in compliance with global regulations.
Learn more about securityVerified Data Centres
ISL Online's master servers are housed in Tier III, ISO/IEC 27001-certified data centres within the European Union, with encrypted sessions relayed through servers in professional data centres worldwide.
Business Continuity & DR
ISL Online has implemented and is maintaining Business Continuity and Disaster Recovery plans ensuring uninterrupted service and operational resilience during disruptions.
Incident Management System
The Incident Management System (IMS) is a key part of our ISO/IEC 27001 certified ISMS. It ensures efficient incident detection, classification, investigation, resolution, and documentation, while supporting root cause analysis and continuous service improvement.
Third Party Validation
ISL Online undergoes regular external audits, including assessments of its Information Security Management System (ISMS) and independent penetration tests, ensuring compliance with industry standards and the highest security practices.
Secure Software Development Life Cycle (SDLC)
ISL Online follows a Secure Software Development Life Cycle (SDLC), embedding security at every stage of development and adhering to the principles of security by design and security by default.
Security Reviews and Penetration Testing
ISL Online conducts regular internal and external security reviews. Penetration testing is performed by independent experts, either commissioned by ISL Online or by our customers, with ISL Online providing full cooperation and support.
Privacy
Based in the EU, ISL Online prioritizes privacy through data minimization and strong encryption at rest and in transit. Depending on the product, customers can generate or provide their own encryption keys for greater control over their data.
Data Subject Rights
ISL Online enables users to exercise their GDPR data subject rights and extends these rights to their own customers, supporting compliance and transparency.
Access Control
ISL Online employs granular access control and role-based permissions internally and extends these capabilities to our products, including support for Single Sign-On (SSO) systems.
Cybersecurity Measures
ISL Online implements state-of-the-art cybersecurity measures, prioritizing risk management, real-time threat detection, and incident response. Key safeguards include access control, encryption at rest and in transit, network segmentation, and regular security reviews with independent penetration testing to identify and mitigate vulnerabilities.
Supply Chain Management
ISL Online follows a supplier-agnostic approach, minimizing reliance on external providers for security. We carefully select suppliers for critical services and conduct regular reviews and assessments to ensure reliability, security, and compliance with industry standards.
Technical and Organizational Measures
ISL Online implements Technical and Organizational Measures (TOMs) in line with GDPR Article 32 to ensure the confidentiality, integrity, and availability of data. Our measures include strong encryption, access control, audit logging, redundant system architecture, and incident response protocols.
Incident Reporting and Communication
ISL Online maintains open communication channels with regulators, national security centers, and information commissioners to enable timely incident reporting and information exchange, supporting transparency, regulatory compliance, and coordinated incident response.
Internal Red Teaming
ISL Online has established an internal Red Team as part of its Security Operations Center (SOC) to actively test and validate the security posture of internal systems and products.
High Availability and Resilience
ISL Online ensures high availability and resilience through a globally distributed network of nodes. Our provider-agnostic infrastructure features automatic load balancing, enabling uninterrupted service and minimizing the risk of downtime.
Documentslink
Certificates, compliance and legal documentation.
Certificates
CertificateISO/IEC 27001:2022 Information security management systemsCertificate
CertificateISO 14001:2015 Environmental management systemsCertificate
CertificateENS: Ensuring Cybersecurity StandardsCertificate
Documents
ISL Online Security Statement
A detailed overview of ISL Online's technical and organizational security measures, ensuring secure and reliable remote access solutions.
Download Security StatementVon unseren Benutzern empfohlenlink
15 Tage kostenlos testen
Entdecken Sie die neue Remote-Desktop-Erfahrung!
Vollversion. Keine Kreditkarte erforderlich
