Cognite does not store any GDPR sensitive information in Cognite Data Fusion. If the customer chooses to store GDPR sensitive, personal data in Cognite Data Fusion, then Cognite Data Fusion provides the needed mechanisms for the customer to comply with GDPR. The customer can easily label the data which is GDPR sensitive and retrieve this data upon request.
# ISO 9001
The Cognite Quality Management system (QMS) is certified according to ISO 9001:2015.
# ISO 27001
The Cognite Information Security Management system is certified according to ISO 27001. All controls of Annex A in ISO 27001:2013/2017 are included in Cognite’s Statement of Applicability. Statement of Applicability can be provided upon request and under NDA