Information Security Certification

  • ISMS-P

    The highest level of authoritative domestic certification system of information security
    and personal information security in South Korea

    ISMS-P(Information Security and Personal Information Security Management System) is a certification system that awards
    a company who achieves a certain degree of performance in the systematic and persistent activities in terms of information
    security and personal information security. NHN has been annually audited for its system of information security and personal
    information security subject to the certification of ISMS (Information Security Management System) and PIMS (Personal
    Information Security Management System), which were obtained in September 2013, and the recently integrated certification
    of ISMS-P as of November 2019.

    • Certified service
      • ISMS-P : Cloud services (public, financial), and operation of external online services.
      • ISMS : NHN Cloud Center (IDC)
    • Valid period
      2019.11.27 ~ 2022.11.26
    ISMS-P
  • ISO/IEC 27001

    International Standard for Information Security Management System

    ISO/IEC 27001 is international standard certificate for information security management system published by the
    International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
    NHN has acquired ISO/IEC 27001 for all the services it provides including Games Platform Services, IDC and
    cloud services, Electronic banking services, E-invoice service, Offline connection service operations in June, 2015.

    ISO/IEC 27001
  • ISO/IEC 27701

    International Standard for Privacy Information Management System

    ISO/IEC 27701 is international standard certificate for the global privacy information management system that meets global
    privacy requirements, such as the EU GDPR enacted by ISO and IEC. NHN has acquired ISO/IEC 27701 for all the services it
    provides including entertainment, e-commerce, cloud services(for public, finance, governmental and medical business), and
    IoT(Internet of Things) services in July, 2020.

    ISO/IEC 27701
  • ISO/IEC 29100

    International Standard for Privacy Framework

    ISO/IEC 29100 is international standard certificate required for establishing and operating global privacy framework enacted by
    ISO and IEC. NHN was the world’s first company to acquire the certificate for all the services it provides including Games
    Platform Services, Internet Data Center and cloud services, Electronic banking services, E-invoice service, Offline connection
    service operations in June, 2015.

    ISO/IEC 27001
  • ISO/IEC 27017

    International Standard for Cloud Service Security

    ISO/IEC 27017 is international standard certificate for cloud service security published by the International Organization for
    Standardization (ISO) and the International Electrotechnical Commission (IEC). NHN has acquired ISO/IEC 27017 for all the
    cloud services it provides including NHN CLOUD in April, 2017.

    ISO/IEC 27001
  • ISO/IEC 27018

    International Standard for Cloud Privacy Security

    ISO/IEC 27018 is international standard certificate for cloud privacy security published by the International Organization for
    Standardization (ISO) and the International Electrotechnical Commission (IEC). NHN has acquired ISO/IEC 27018 for all the
    cloud services it provides including NHN CLOUD in April, 2017.

    ISO/IEC 27001
  • ISO/IEC 27799

    International Standard for Health Information Security

    ISO/IEC 27799 is international standard certificate for health information security published by the International Organization for
    Standardization (ISO) and the International Electrotechnical Commission (IEC). NHN has acquired ISO/IEC 27799 for all the
    cloud services it provides including NHN CLOUD in July, 2019.

    ISO/IEC 27001
  • CSAP(Cloud Security Assurance Program) Certification [IaaS, SaaS]

    Information security management system evaluation and certification for providing safe cloud services to governmental

    The Cloud Security Assurance Program is a program that reviews whether a service provided by a cloud service provider complies with the
    information security standards under Article 23 Paragraph 2 of the Cloud Computing Development and User Protection Act of Korea
    and grants certifications to companies that satisfy certain minimum standards. NHN Corporation acquired the certification for IaaS in December 2017, SaaS in December 2019 and has its cloud service security systems regularly certified through strict verification procedures every year.

    • IaaS Certified service
      NHN Cloud (for public institutions)
    • IaaS Valid period
      2017.12.15 ~ 2022.12.14
    • SaaS Certified service
      Dooray!
    • SaaS Valid period
      2019.12.18 ~ 2024.12.17
    CSAP
  • CSA STAR

    International Cloud Service Information Security Certification by CSA (Cloud Security Aliance)

    CSA STAR certification is an international cloud service information security certification hosted by the US Cloud Security Alliance (CSA). It assesses the effectiveness and maturity of security controls through the Cloud Control Matrix
    and grants a certification called STAR (Security, Trust & Assurance, Registry). NHN has obtained the CSA STAR Certification for NHN Cloud Service since October 2019.

    • Certified service
      NHN cloud service for public, financial, governmental and medical IaaS service
    • Valid period
      2019.10.30 ~ 2022.10.29
    CSA STAR