We’re excited to announce that Neon has officially achieved ISO 27001 and ISO 27701 compliance! These new certifications add to our growing list of compliance achievements, further solidifying our commitment to providing industry-leading security and privacy for our customers.

With SOC 2 Type 2, GDPR, and CCPA compliance already in place, our latest ISO certifications reinforce that we’re leading the way in security and privacy for database platforms—setting a new benchmark for the industry.

Understanding ISO Compliance

ISO compliance is a globally recognized standard that evaluates how companies manage security and privacy. These certifications, developed by the International Organization for Standardization, ensure that businesses have rigorous controls in place to protect data and meet legal requirements.

• ISO 27001 focuses on securing information through a comprehensive information security management system (ISMS). It ensures that we manage and protect sensitive information effectively.
• ISO 27701 is an extension of ISO 27001, but it specifically deals with privacy information management. This certification validates that we handle personal data responsibly and meet privacy requirements across different regions.

By obtaining these certifications, we demonstrate that our systems and processes meet the highest standards for both security and privacy.

Data Privacy at the Core of Our Compliance

With ISO 27701 certification, we’ve strengthened our commitment to managing personal data in line with global privacy standards. This certification, an extension of ISO 27001, ensures that we handle personal data responsibly, minimizing risks and meeting the strict requirements of privacy regulations worldwide. At Neon, protecting your data privacy is more than just compliance—it’s a core part of our security and service design.

Setting Neon Apart

Achieving both ISO 27001 and ISO 27701 positions us ahead of many companies that may focus on only one standard. We’ve built a security framework that not only meets the needs of today but is also prepared for the challenges of tomorrow. By consistently exceeding compliance standards, Neon provides the peace of mind that your data is in good hands.

A Smooth and Successful Audit

Our path to ISO certification was the result of a year-long preparation, followed by an intensive 4-week internal audit. This set the stage for a successful 7-day external audit, which resulted in zero non-conformities, demonstrating our readiness and commitment to maintaining the highest security standards—without disruption to our operations.

How We Lead in Compliance

At Neon, we go beyond the basics of compliance, with a comprehensive portfolio that includes SOC 2 Type 2, ISO 27001, ISO 27701, GDPR, and CCPA. Our proactive approach ensures we’re consistently ahead of the curve in data protection, offering a level of security and privacy that few in our space can match. This commitment sets a higher standard for safeguarding data in the database platform industry.

What’s Next?

As we celebrate this milestone, we remain focused on continuous improvement and staying at the forefront of security and privacy. In 2025, we’ll be working toward achieving HIPAA compliance, further strengthening our platform’s ability to handle sensitive healthcare data. This means not just maintaining our existing certifications but always striving for more robust and secure ways to protect your data.

For more information about our security practices or to request certifications, visit our trust page at trust.neon.tech.