Compliance of Managed Kubernetes with 152-FZ
Managed Kubernetes complies with the requirements of Federal Law No. 152-FZ "On Personal Data" — you can store and process users' personal data of the first level of security (UZ-1).
In addition to Managed Kubernetes, other products in Selectel's cloud platform meet the requirements for Level 1 security:
- Cloud servers, disks, networks, images, scheduled backups, load balancers;
- Cloud databases;
- Container Registry;
- Object Storage.
Areas of responsibility
Responsibility for the information security of personal data and compliance with legal requirements is shared between Selectel and the user.
A list of security measures and more detailed information on areas of responsibility can be seen in Annex 1 and Annex 2 to the Act of evaluation of the efficiency of the measures taken to ensure personal data security for the first level of protection.
User
The user is responsible for the information security of their own infrastructure based on Managed Kubernetes clusters:
- secures Managed Kubernetes worker nodes, including operating systems and applications;
- provides network security for the networks that are created;
- organizes access control to work nodes, applications and processed data.
Selectel
Selectel is responsible for the information security of the service infrastructure of the cloud platform and ensures:
- physical security and fault tolerance of equipment (hardware infrastructure);
- network security of service networks, including Managed Kubernetes cluster service networks;
- security of the virtualization platform and service servers;
- Managed Kubernetes cluster master node security.
Cost
152-FZ compliance is included in the cost of Managed Kubernetes — read more about payment.
Issue an order for processing personal data
To conclude an order for personal data processing file a ticket.
We will prepare the order and send it to you for signature: in paper form or via electronic document management.