t('GDPR Compliance Kit');?>

t('Simplifying the complex requirements of privacy regulations.');?>

t('The GDPR (General Data Protection Regulation) makes organizations liable for any violations of user privacy and deviations from a high data security standard.');?>

t('Legislation like the CCPA (California Consumer Privacy Act of 2018) brings similar regulation to other countries.');?>

t('The self-hosted Nextcloud solution simplifies compliance, decreasing business risk and costs.');?>

t('Making compliance easy');?>

t('Nextcloud Compliance Kit');?>

t('Nextcloud offers everything you need for GDPR compliance.');?>

whitepaper

t('Clear documentation');?>

t('Compliance is a multi-step process and data can be in many locations. Our documentation helps administrators check if they have covered their bases and guides them through delivering on data access, modification and deletion requests.');?>

t('We offer both a high level overview as well as hands-on, concrete documentation for administrators:');?>

  • t('A 12-step compliance checklist');?>
  • t('An extensive, over-20-page Administrator manual');?>

t('All bases covered');?>

  • t('How the GDPR data processing allowances apply to Nextcloud and when, where and how to ask for permission');?>
  • t('How to deal with public, in-house and B2B Nextcloud servers');?>
  • t('An overview of where personal data can be stored in Nextcloud, covering user accounts, monitoring and logs, apps, file storage, database, backups and more');?>
  • t('How to handle consent, subject access requests, data deletion and more');?>
  • t('An addendum covering popular apps and their GDPR compliance consequences');?>
  • t('Personal rights and how to implement this in Nextcloud');?>

t('GDPR Compliance Apps');?>

t('To make compliance easier, Nextcloud offers a number of Compliance apps and capabilities.');?>

  • t('Configurable imprint and privacy links for your login page');?>
  • t('Data Request app to allow users to request data deletion or modification from their user settings');?>
  • t('Delete Account app to allow users to delete their account');?>
  • t('Terms of Service app that only gives access to Nextcloud after users read and agreed to terms (handles updated terms as well)');?>

t('Reduce risk, improve collaboration and auditability and cut operational expenses with the leading content collaboration platform.');?>

t('Contact us now');?>

t('What our users say');?>

Thank You from a customer

The GDPR Compliance Kit dealt with all our concerns. The global nature of the research community with frequent collaboration with European researchers and students requires global compliance awareness and an on-premises solution backed by the expertise of Nextcloud GmbH gives us the assurances we need.

-Hans Erasmus, Junior Infrastructure Architect at the North-West University in South Africa.
in action

t('EU Cybersecurity Act');?>

t('Explicitly designed to build on existing certifications like ISO 27001a or BSI C5, under the guidance of CSPCert a recommendation has been presented to the ENISA to define a European Cybersecurity Certification Scheme for Cloud Service Providers. The upcoming Cybersecurity Act defines three levels of assurance (Basic, Substantial and High) and provides a comprehensive set of rules, technical requirements, standards and procedures for assesment and certification.');?>

t('Nextcloud follows the strictest security protocols in the industry and anticipates to be ready for easy and quick certification of customer deployments once the Cybersecurity Act goes into effect.');?>

in action

t('CFR - Code of Federal Regulations Title 21');?>

t('Nextcloud is ready for use in a FDA Title 21 CFR Part 11 compliant environment, if set up and run properly on appropriate infrastructure. Nextcloud features the required retention, versioning and auditing features and can integrate with signature application and validation solutions.');?>

t('As we do not operate Nextcloud for our customers nor control how they use it, as a on-premises hosted solution, Nextcloud itself can not be certified. However under a Nextcloud Subscription we can help review, validate and certify your compliance.');?>

t('How Nextcloud delivers');?>

t('Ultimate security');?>

t('Choosing a self-hosted product means you can guarantee your customers that data never leaves your company and remains 100% confidential.');?> t('You can run Nextcloud in your own datacenter, on rented dedicated servers or a local, trusted cloud provider to ensure the right balance between control, costs and flexibility.');?>

t('Powerful server and client side encryption options provide ultimate protection for sensitive documents.');?>

t('Complete control');?>

t('Nextcloud combines advanced data access controls with powerful monitoring and logging capabilities to ensure compliance and auditability.');?>

t('Our Compliance Kit gives administrators the tools they need to export, update and delete user data.');?>

in action

t('Assicuro Private Insurance');?>

t('Assicuro chose Nextcloud to ensure confidential data exchange with its over 3000 customers and partners, enabling customers to securily share confidential information e.g. insurance policies. Compared to other evaluated solutions, Nextcloud offered an easier user interface, and a professional and more secure, extensible platform.');?>

t('Get our whitepaper');?>

t('Data protection');?>

t('Secure your data');?>

t('While data needs to be available for employees at all times, the IT department must be able to ensure policies around securing and sharing personal data are respected.');?>

t('Many customers care deeply about their privacy and keeping their data secure while regulators give heavy penalties for data leaks. Nextcloud offers you the tools to keep data compliant and safe.');?>

  • t('Legal compliance');?>
    t('Federal data protection and GDPR-compliant, protecting data sovereignty, keep the server location in your country.');?>
  • t('Data security');?>
    t('Multiple levels of encryption (HTTPS/SSL/TLS, AES-256 or stronger, server-side and end-to-end encryption) ensure the highest level of data protection from hacking.');?>
  • t('Fine-grained authorization');?>
    t('A dedicated user and group management as well as a rights system allows the assignment of access rights according to your requirements.');?>

t('Nextcloud is a popular self-hosted solution in businesses dealing with private data for its ability to strictly control access to data and industry-leading security capabilities.');?>

in action

t('File Access Control');?>

t('The File Access Control feature of Nextcloud enables IT to codify legal and policy requirements, blocking unauthorized users uploading or downloading data following defined rules. Criteria include IP address ranges, group membership, file type and size, time and more. Data retention can be controlled as well, enabling administrators to limit the lifetime of certain files.');?>

t('File Access Control');?>
in action

t('Monitoring and auditing logs');?>

t('Nextcloud offers built-in powerful monitoring capabilities, enabling organizations to ensure smooth performance. Systems can be monitored using the web interface or through monitoring and systems intelligence tools like OpenNMS, Splunk, Nagios or others. A full auditing system logs all user actions, enabling fully compliant usage of file sync and share.');?>

t('Monitoring and auditing');?>
in action

t('Encryption');?>

t('Nextcloud uses industry-standard SSL/TLS encryption for data in transfer. Data at rest in storage can be encrypted using a default military grade AES-256 encryption with server-based or custom key management. Optionally and on a per-folder base data can be end-to-end encrypted on the client with the server assisting in sharing and key management using a Zero-Knowledge model.');?>

t('Seamless integration and ease of use with key features like offline recovery keys, auditing and HSM support make Nextcloud Encryption capabilities leading in the industry.');?>

Nextcloud understands the necessity to provide core principle baseline security requirements, as such Nextcloud is built on these security principles to ultimately deliver a secure solution to their customers

t('NCC Group');?>

t('Nextcloud offers first-in-class, third-party verified security backed by a USD 10000 Security Bug Bounty program protecting against unauthorized access.');?>

t('Security in Nextcloud');?>

t('The best of both');?>

t('Compliance and security without losing productivity');?>

in action

t('Easy access');?>

t('A first requirement for any secure solution to share data is that it does not force complexity on the user. Complexity leads to mistakes and mistakes are costly in many ways!');?>

t('Nextcloud makes accessing and sharing data a breeze, providing users a comfortable, familiar workspace.');?>

in action

t('Multi-platform productivity');?>

t('Data needs to be available where your employees are. Tablets, mobile devices, laptops and desktops all have access to the same files at a moments notice thanks to the first-class Nextcloud clients.');?>

t('Users can tag and comment on files for easy collaboration, roll back files to earlier versions or find deleted files in the trash. Real time collaborative editing and secure audio/video calls and chat complement the array of features aimed at enhancing productivity.');?>

in action

t('Secure file exchange');?>

t('Sharing files across the borders of your organization can be done easily and securely with our file-drop feature.');?>

t('IT stays in control at all times, enforcing security policy with the File Access Control capabilities.');?>

t('File Drop');?>

t('Integrated in email');?>

t('To quickly and securely get data to your customers or receive documents from them, use the Nextcloud Secure Sharing Outlook Add-in. This avoids insecure and big attachments and instead provides a secure, trust-worthy file exchange that does not direct your customers to a third party but runs on your server and your domain.');?>

t('Email integration');?>

t('We provide trust');?>

t('You are entrusted with the private data of your users. Breaking that trust is a costly, career-ending mistake.');?>

t('Nextcloud enables you to focus on your work, taking care that your data stays private and completely under your control!');?>

t('Try Nextcloud Files');?> t('Contact sales');?>

t('Easy integration');?>

t('Efficient deployment and management');?>

t('Complexity is the enemy of security and Nextcloud is designed to offer quick and easy integration in existing infrastructure, leaving policies and procedures in place. Its powerful LDAP and storage integration seamlessly fits with existing user directories, Windows Network Drive, NFS and Sharepoint storage solutions.');?>

t('The result: a quick implementation at low cost, and easy maintenance making a self-hosted Nextcloud the cloud compliance solution with the lowest TCO.');?>

t('Deep integration');?>

t('Nextcloud integrates in hospital infrastructure with support for SAML and Shibboleth, LDAP, Kerberos, Oauth, and other often used authentication mechanisms and runs on all enterprise Linux systems offering support options to match their life cycle.');?>

t('Data storage can be one or multiple NFS, Object Storage, Samba or a variety of other powerful storage mechanisms. This way Nextcloud provides seamless access to data on existing storage mechanisms, respecting existing access control policies and transparently handling changes on the underlying storage layer.');?>