Is MindMeister GDPR Compliant and ISO Certified?

Yes, MindMeister is GDPR (and CCPA) compliant and ISO 27001 certified - our servers are also located in an ISO 27001-certified data center in Frankfurt, Germany. 

What is ISO 27001 Certification?

ISO 27001 is the most commonly-used international standard on information security management. As part of the certification process, third-party auditors check compliance with a large number of security-relevant criteria: how data is managed, documentation for security topics, processes to mitigate security risks and much more. 

In an increasingly security-aware online environment, our ISO 27001 certification shows that Meister is committed to keeping users safe.

  • ISO 27001 provides peace of mind that sensitive data stored in Meister tools will be kept safe.
  • The certification is renewed every year to ensure that Meister continues to comply with the strictest standards.
  • Unlike regional compliance certifications, such as GDPR, ISO 27001 is globally applicable.

How does Meister ensure data security?

Meister backs up your data on daily, weekly and bi-weekly rotations at multiple offsite locations in Germany and uses the Google Cloud Platform. Your team's data transfers are always processed with state-of-the-art TLS encryption. All systems are protected by multiple firewalls and network access controls. Meister has also implemented sophisticated DDoS protection to secure all services from malicious attack.

Meister provides: 

  • State-of-the-art TLS encryption on all data transfers
  • 24/7/365 monitoring of entire server farm
  • Fail-safe power supply
  • Redundant Internet connectivity

For more information about privacy & security, please see the MindMeister security page.

Was this article helpful?