Cumplimiento normativo, garantías de seguridad y certificaciones

Axon’s compliance demonstrates our commitment to providing a trustworthy platform and offers customers a way to understand the controls that have been put in place to secure Axon Evidence and their data.

Certificado por la norma ISO/IEC 27001:2013

Normas de gestión de seguridad de la información

The ISO/IEC 27001:2013 certificate validates that Axon has implemented the internationally recognized information security controls defined in this standard, including guidelines and general principles for initiating, implementing, maintaining, and improving information security management within an organization. A copy of the certification can be downloaded here.

Certificado por la norma ISO/IEC 27018:2014

Código de Prácticas de Protección de los Datos Personales en la Nube

La certificación ISO/IEC 27018:2014 valida que Axon ha implementado los objetivos de control, los controles y las pautas internacionalmente reconocidas inherentes a la protección de la Información de identificación personal (PII, por sus siglas en inglés), de conformidad con los principios de privacidad exigidos por la ISO/IEC 29100 para los entornos informáticos en la nube. Una copia de la certificación puede ser descargada aquí.

Cumplimiento de las normas de CJIS

Axon Evidence was designed and is operated to ensure that it is compliant with the FBI CJIS Security Policy. Customers can be assured that their digital data is protected by a robust information security program that is designed to exceed the CJIS security requirements as well as provide protection against current and emerging threats. The Axon CJIS Compliance Whitepaper outlines the specific security policies and practices for Axon Evidence and how they are compliant with the CJIS Security Policy. Read more about Axon's CJIS Compliance program and commitments here.

Cumplimiento de la norma 17.5.4 de CALEA

Axon Evidence is aligned with the Commission on Accreditation for Law Enforcement Agencies (CALEA) standard related to Electronic Data Storage in the context of utilizing a service provider (17.5.4). Determining conformity with CALEA standards is a requirement for customers to make individually. Axon can provide customers with a document that outlines how Axon Evidence, specifically the Axon Master Service Purchasing Agreement, aligns with the standard. Contact your Axon Sales Representative for more information.

HIPAA and HITECH

Axon has implemented safeguards to adequately protect Protected Health Information (PHI) that may be captured by Axon products and stored in Axon Evidence. Axon can enter into Business Associate Agreements with customers who are covered entities or business associates under HIPAA and expect PHI to be processed or stored within Axon Evidence. Contact your Axon Sales Representative for more information.

Informe SOC 2+

Axon has achieved AICPA SOC 2 Type 2 reporting. A SOC 2 audit gauges the effectiveness of the Axon Evidence service based on the AICPA Trust Service Principles and Criteria. The Axon SOC 2+ report includes a comprehensive description of the Axon Evidence service in addition to an assessment of the fairness of the Axon's description of its controls. The SOC 2+ evaluates whether the Axon's controls are designed appropriately, were in operation on a specified date, and were operating effectively over a specified time period. Axon is audited annually against the SOC reporting framework by independent third-party auditors. Contact your Axon Sales Representative to request a copy of the SOC 2+ report.

Alianza de Seguridad en la Nube - Validación CSA STAR (nivel dos)

Axon has been awarded CSA STAR Attestation. STAR Attestation consists of a rigorous third party independent assessment of Axon Evidence against the CSA's Cloud Controls Matrix (CCM). Detailed results of the STAR Attestation testing are included in the Axon SOC 2+ report. A copy of Axon's CSA STAR Attestation can be downloaded here.

Alianza de Seguridad en la Nube - Autovalidación CSA STAR (nivel uno)

La respuesta de la matriz de controles en la nube (CCM) de Cloud Security Alliance (CCA) de Axon proporciona información detallada sobre la forma en que Axon cumple con los requisitos de seguridad, privacidad, cumplimiento y gestión de riesgos definidos por CCM y la versión 3.0.1 del Consensus Assessments Initiative Questionnaire (CAIQ). Los clientes pueden revisar la respuesta de Axon a la CCM de CSA aquí.

Accessibility Conformance Report - WCAG 2.0 & VPAT/Section 508

Axon has created the Axon Evidence Accessibility Conformance Report for the purpose of assessing Axon Evidence compliance with the Web Content Accessibility Guidelines (WCAG) 2.0. The report covers the degree of conformance for WCAG 2.0 and U.S. Section 508 Standards. The report is available here.

Programa federal de administración de riesgos y autorizaciones (FedRAMP)

Axon has achieved a FedRAMP Joint Authorization Board (JAB) Provisional Authority To Operate (P-ATO) at the Moderate Impact Level. The authorization confirms that Axon Evidence has been reviewed and approved by the US Departments of Defense and Homeland Security, and the General Services Administration. Read more about Axon's FedRAMP Authorization here.