Confidentiality, integrity, and availability.
Certified data centres and processes
Get an insight into the certifications that confirm our high-quality standards.
The data centres of firstcolo with several locations in Frankfurt am Main have been successfully certified by TÜV according to the ISO/IEC 27001:2013 standard. In accordance with the ISO/IEC 27001:2013 standard, the focus of the certification lies in the area of continuous compliance and further development of the information security system (ISMS) throughout the entire value chain. In addition to internal processes, the audits focus in particular on the interfaces to customers and suppliers. In all areas, the documentation and continuous development of the ISMS, the SOPs (Standard Operation Procedures) and the BCM (Business Continuity Management) were positively assessed. All qualitative and quantitative KPIs set in the areas of confidentiality, integrity and availability were achieved or even exceeded.
firstcolo can demonstrate an efficient quality management system with the help of the quality management standard ISO 9001:2015. For this purpose, all operational processes were listed and analysed in order to identify potential optimisations. Thus, the certification serves as proof that all business processes within firstcolo are clearly defined and that the company is able to continuously adapt to customer needs.
TÜV tested datacenter level 3
The data centres in Frankfurt am Main have also been successfully certified by TÜV as a "TÜV tested datacenter level 3". In addition to the availability of information technology infrastructures, the focus of the certification is on compliance with the laws on data protection and basic IT protection. The different levels for evaluation provide information about accessibility, with level 3 representing a "highly available data centre 24×7". In terms of infrastructures, the TÜV certification provides information about the energy supply of the data centre and risk minimisation through supporting technical equipment as well as through connection to a highly efficient and reliable data network. Additionally, TÜV examined the operational management with regard to maintenance, fault clearance and servicing processes, which are responsible for the unrestricted operation based on the technical infrastructure. Last but not least, IT security is also checked against the requirements of ISO/IEC 27001, which ensure continuous compliance and further development of the information security management system throughout firstcolo's value chain. The validity of the certification can be checked online for the respective locations FRA1 (firstcolo data centre AOC) and FRA4 (firstcolo data centre Werkhaus).
firstcolo has the worldwide recognised PCI-DSS (Payment Card Industry Data Security Standard) certification. PCI-DSS certification guarantees security standards that are legally required for the processing and storage of credit card data. The PCI-DSS security standard is intended to protect online merchants and end customers from fraudulent attacks, credit card misuse as well as theft in payment transactions. Strict security standards must be demonstrated in order to receive PCI-DSS certification. In doing so, the protection of online merchants and end customers always has the highest priority. Fraudulent attacks are not uncommon in card transactions within the financial sector - which makes it all the more important to have an IT infrastructure that meets even the highest security standards. This is the only way to ensure the appropriate and responsible processing of credit transfers. The validity of the PCI-DSS certification can be tracked online.
100% Green Electricity
The power supply of the firstcolo data centres is guaranteed in regular use by 100% green electricity. Therefore, only renewable energy sources are used. firstcolo uses the ÖkoBasis product of the Frankfurt energy provider mainova AG for this purpose. The ÖkoBasis product is certified by TÜV Süd. The certification guarantees 100% green electricity from renewable energy sources. The requirements are checked according to the "VdTÜV-Basisrichtlinie Ökostromprodukte" (VdTÜV Basic Guideline on Green Electricity Products) of the data sheet energy 1304 Version 10.2014.