Open Telekom Cloud: European public cloud #
Open Telekom Cloud offers IaaS (Infrastructure as a Service) from the public cloud.
Open Telekom Cloud is based on OpenStack, the Open Source Cloud architecture, and offers open interfaces. This open standard makes it as easy as possible to integrate your IT projects and infrastructures into Open Telekom Cloud.
Nuabee has been developing its solution on OpenStack since 2014.
Open Telekom Cloud data centers #
Whether in Germany or the Netherlands, OTC offers two identical data centers at each location:
- The German centers are located 18 kilometers apart, in Magdeburg and Biere
- , and are connected by a high-speed network, isolated from public networks.
- The European data centers in the Netherlands operate in the same way.
99.999% availability #
The benefits of dual-core implementation mean that your backup data will be stored multiple times, so that operation can continue even if one of the data centers suffers a complete failure.
By combining dual-core technology, an in-house “Zero Outage” quality assurance program and the most stringent security measures throughout, OTC achieves a maximum permanent availability of 99.999%. This level corresponds to Level III+ security according to the Uptime Institute.
Extensive IaaS capacity #
Current datacenter capacity is spread over more than 21,000 m2 of IT production space across the two regions.
Open Telekom Cloud: 100% GDPR-compliant #
Open Telekom Cloud maintains strict standards, guaranteeing physical security in our data centers and full compliance with the European GDPR.
Services are regularly certified by independent institutions and meet the sector-specific provisions of the German Criminal Code (StGB), the German Social Security Code (SGB), the Federal Financial Supervisory Authority (BaFin) and the Federal Office for Information Security (BSI) equivalent to ANSSI in France.
Certifications and compliance #
To meet the latest security and data protection requirements, OTC services are subject to strict rules and are regularly audited by independent specialists. The complete list is available here
Some independent certifications #
TISAX level 3
TISAX certification is the definitive standard for data security in the automotive industry. Both Open Telekom Cloud regions (Germany and the Netherlands) are now certified.
Privacy and security assessment
PSA is an integral part of guaranteeing data confidentiality and security for our customers, which is validated in ISO27001 audits by DEKRA.
PCTD 1.0
Data protection requirements for order data processing certified by DEKRA.
SOC 1 Type II (ISAE 3402)
As part of the audit, the effectiveness of relevant financial reporting controls is tested.
SOC 2 Type II (ISAE 3000)
As part of the audit, relevant controls aimed at guaranteeing the trust service criteria – security, availability, integrity, confidentiality and data protection – are carried out and their effectiveness is tested.
SOC 3 (ISAE 3000)
This report is intended for public distribution. It summarizes the results of SOC 2 and includes an assessment by our external auditor.
BSI C5 Type II (ISAE 3000)
This report verifies the minimum information security requirements for cloud services of the BSI Cloud Computing Compliance Criteria Catalog (BSI C5).
The EU Cloud Code of Conduct (EU Cloud CoC) provides independently verified evidence that data is processed in accordance with the requirements of Art. 28 and Art. 40 GDPR.
Open Telekom Cloud is verified for compliance with the EU Cloud CoC and is verified under Verification ID: 2022LVL02SCOPE4315.
Uptime Institute – Tier III certified
Tier III-certified data centers use redundant components. Multiple servers. The identical architecture of the Magdeburg and Beer data centers meets TIER III certification criteria.
GxP
GxP is an industry-specific framework covering the implementation of “good working practice” guidelines in the pharmaceutical sector.
European Code of Conduct Award 2023
The European Commission has recognized the Open Telekom Cloud data center in Biere as one of the most energy-efficient in Europe with the European Code of Conduct Award 2023.
ISO 27000 family certifications #
ISO/IEC 27017: Certification of additional information security controls for the use of Cloud services.
ISO/IEC 27001: Certification of the establishment, implementation, maintenance and continuous improvement of an information security management system (ISMS).
ISO/IEC 27018: Certification of the protection of personally identifiable information (PII) in public clouds acting as PII processors with data protection management.
ISO/CEI 27701: Certification to establish, implement, maintain and continually improve a privacy information management system (PIMS).
Other ISO certifications #
ISO 9001: Certification of the establishment, implementation, maintenance and continuous improvement of a quality management system (QMS).
ISO 14001: Certification of the establishment, implementation, maintenance and continuous improvement of an environmental management system (EMS).
ISO/IEC 20000-1: Certification of the establishment, implementation, maintenance and continual improvement of a service management system (SMS).
ISO 22301: Certification of the establishment, implementation, maintenance and continual improvement of a business continuity management system (BCMS).