Security & ComplianceProcurement-grade
Procurement-grade
transparency.
An ISO 27001 certification as a logo is weak. Here you'll find the scope, the working groups we co-author in, the standards we support, and the documents you need for procurement.
ISO 27001 certification
- Scope
- Hosting, development and operation of charging-infrastructure software
- Certification date
- [YYYY-MM-DD]
- Audit cycle
- Yearly · 3-year recertification
- Certifying body
- [Name]
- Certificate number
- [Number]
Memberships & working groups
- OCA, Open Charge Alliance
- Member · OCPP working group · co-author
- EVRoaming Foundation
- Member · OCPI working group · 2.3 co-author
- Why
- We co-author the protocols the market uses, not a passive observer.
Supported standards
- OCPP
- 1.6 + 2.0.1 native
- OCPI
- 2.1.1 / 2.2.1 / 2.3
- ISO
- ISO 27001 (information security)
- GDPR
- Fully compliant · DPA on request
- BIO
- Mappable · reference on request
- OAuth/OIDC
- SSO + token-exchange for partners
Datacenter & infrastructure
- Hosting
- [Provider · regions]
- Multi-region
- Active-active failover
- Data residency
- EU-only data path · [confirmation]
- Backup
- [RPO · RTO targets]
- Monitoring
- 24/7 NOC · pager rotation
Sub-processors
- Hosting
- [Provider]
- [Provider]
- Logging
- [Provider]
- Monitoring
- [Provider]
- Full list
- On request · part of DPA
DPA / GDPR / BIO
- Data Processing Agreement
- Standard DPA on request, sample available
- GDPR
- Fully compliant, DPO assigned
- BIO
- Mappable for public tenders
- Privacy policy
- Documented per product
Documents
Security whitepaper
PDF · NL/EN · placeholder
DPA template
DOCX · placeholder
Sub-processor list
PDF · placeholder
ISO 27001 certificate
PDF · placeholder