Skip to main content

Compliance with safety standards

Last update:

International standards and Russian legislation

Selectel's infrastructure complies with the requirements of international standards and Russian legislation on information security and personal data protection. For more information about the conclusions and certificates confirming compliance with security requirements, see the Security page on selectel.ru.

Existing Selectel customers can obtain additional documents to the appropriate standards:

  • FSTEC orders: threat assessment results;
  • PCI DSS: AOC, Responsibility Delineation Matrix;
  • GOST 57580: matrix of delineation of responsibilities;
  • SOC 2: Report.

To request additional documents, create a ticket.

The compliance of Selectel products with security standards and legal requirements is confirmed by certificates, attestations, certificates and opinions — for more details see the Matrix of Product Compliance with Information Security Requirements subsection.

Matrix of product compliance with information security requirements

You can download certificates, attestations, certificates and opinions on the Selectel Safety page on selectel.ru.

Server colocationDedicated serversSelectel Cloud PlatformS3 (S3)Cloud databasesManaged Kubernetes (MKS)Container Registry as a Service (CRaaS)Dedicated servers in A data centersAttested segment of Selectel Cloud Platform and S3 S3VMware-based cloud, including DaaS
21 FSTEC order (152-FZ)Performance evaluation act, UZ-1Performance evaluation act, UZ-1Performance evaluation act, UZ-1Performance evaluation act, UZ-1Performance evaluation act, UZ-1Performance evaluation act, UZ-1Performance evaluation act, UZ-1Performance evaluation act, UZ-1Certificate, UZ-1Performance evaluation act, UZ-1
17 FSTEC order (GIS)Certificate, K1
AC EPCertificate, 1GCertificate, 1G
GOST 57580Conclusion (R=0.91)Conclusion (R=0.91)Conclusion (R=0.91)Conclusion (R=0.91)Conclusion (R=0.91)Conclusion (R=0.91)Conclusion (R=0.91)Conclusion (R=0.92)Conclusion (R=0.92)
ISO 27001, 27017, 27018, GOST R ISO/MEC 27001CertificateCertificateCertificateCertificateCertificateCertificateCertificateCertificateCertificate
PCI DSSPCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider CertificatePCI DSS 4.0.1 Service Provider Certificate
GDPRThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the ClientThere is a possibility of conclusionDPA and SCC with the Client
SOC 2® Type IReport

Personal data

In accordance with the requirements of 152-FZ and GDPR, you can entrust Selectel with the processing of personal data. The list of actions with personal data that Selectel performs as a processor under the assignment: storage, destruction.To conclude an assignment under the 152-FZ or DPA, SCC under GDPR, create a ticket.

Types of protection systems according to security levels and GIS classes

The table shows the basic composition of the required information security features (ISPs) that Selectel can provide as a service.

The composition of a protection system for personal data information system (PDIS) can be changed depending on the technical features of the system, threat models and information security violator.

The need for cryptographic protection for ISPDN is determined by the threat model and depends on the ability to neutralize threats by other means.Cryptographic protection for GIS is always used regardless of the security level and class of the system, if the system fits one or more conditions:

  • there are communication channels that extend beyond the controlled area;
  • information can only be protected with the use of encryption;
  • legal significance of electronic documents and their protection against counterfeiting.

The decision on the sufficiency of the applied protection systems is made by the owner of the information system or the FSTEC licensee who conducts the certification.

Security Level (SL) of an ISPDN (FSTEC-21)GIS Class (FSTEC-17)Security protection systems that Selectel can provide
KM 4KM 3UZ 2.UZ 1.К 3К 2К 1

Protection against unauthorized access

The choice of security tool depends on the OS on the server.
For Windows Secret Net Studio for Linux Secret Net LSP
Trusted downloadDallas Lock SDZ *.
PAK Sobol **
FirewallingUserFate.
Host-level ITU as part of Secret Net Studio and Secret Net LSP
Malware protectionKaspersky.
Antivirus protection module as part of Secret Net Studio
IDS/IPSIntrusion detection system as part of UserGate.
Host-level IDS as part of Secret Net Studio
Identifying vulnerabilitiesVulnerability Analysis Service
Cryptographic protectionGOST-VPN service
SIEMRuSIEM, provided as a license
Anti-DDoS
WAF

The need for DDoS defenses depends on the types of threats		Free basic Selectel protection against DDoS attacks at the L3-L4 level.
Partner solutions — protection at levels L3-L7 from DDoS-Guard and Curator.
Means WAF
Backup systemCloud Server Backup.
Backup of dedicated servers.
Cyber Backup Cloud

* The Dallas Lock SPD is certified by the Federal Service for Technical and Export Control of Russia and can be used to certify systems for GIS data protection requirements.

** Sobol PAC has certificates of FSB and FSTEK of Russia and can be used to upgrade the cryptographic protection class to KS2 and KS3 classes.