Cloud LanCloud received a conclusion on compliance with FZ-152 "On Personal Data"

2021: Conclusion on compliance with FZ-152 "On Personal Data"

The cloud of the company LanCloud received an opinion on compliance with FZ-152 "On Personal Data." The developer announced this on September 30, 2021.

Audit of personal data protection system LanCloud confirmed ensuring the first level of personal data protection

In September 2021, Card Sec LLC completed an audit of the personal data protection system HIPD Cloud Infrastructure LanCloud. Kard Sec LLC operates on the basis of FSTEC of Russia license No. 3099 for TZKI activities and specializes in audit and consulting services in the field of information security. As a result of the audit, the LanCloud received an Opinion on the compliance of the personal data protection system with the requirements of No. 152-FZ "On Personal Data," ensuring the level of protection of UZ-1.

As of September 2021, the LanCloud cloud is used by more than 40,000 users. In addition, the cloud houses IT Infrastructure various enterprises operating in the field, retail production,,,, finance consulting as well as a number of commercial companies state with participation. At the same time, the number of customers annually increases by about 50%, and the volume of LanCloud processed in the cloud already information reaches several petabytes. The storage and processing of this amount of data imposes provider a high responsibility for the preservation and protection of confidential customer information. That is why LanCloud turned to a specialized organization to conduct an audit and issue an opinion on compliance.

During the audit, a survey of the entire cloud IT infrastructure of the LanCloud was carried out, as well as internal management, monitoring and logging processes. In addition to auditing the cloud infrastructure itself, an DPC audit of the level of security in all IaaS SaaS and LanCloud services was carried out. In particular, the following services were included in the conclusion on the compliance of the PDP security level virtual servers : Cloud Server cloud IaaS on platforms and,, Hyper-V VMware e-mail Cloud Exchange Cloud cloud service 1C: Enterprise , 1C communications and Cloud videoconferences Skype4B, document collaboration, cloud Cloud SharePoint office, service, Cloud Office backup Cloud Backup Cloud Disk cloud disk, Cloud DRaaS disaster recovery service, cloud telephony Cloud PBX and e-mail and collaboration service. Cloud Zimbra (Zextras)

According to the results of the audit of the LanCloud cloud, the compliance of the HIPD was established: No. 152-FZ "On Personal Data" dated July 27, 2006, "Requirements for personal data protection during processing in personal data information systems," approved by Decree of the Government of the Russian Federation No. 1199 of 01.11.2012, as well as "The composition and content of technical and organizational measures to ensure the security of personal data during their processing in personal data information systems," approved by order of the FSTEC No. 21 of 18.02.2013

The report confirms that the LanCloud provides a high level of information security and allows customers to store and process LanCloud any category of personal data in the cloud.