No single standard or set of controls apply to all possible scenarios. Compliance programs vary in accordance with the type and nature of the solution that is managed under specific controls related to a given compliance program. NetApp organizes its compliance offerings by services, hardware, and software.
NetApp offers cryptographic modules that have achieved FIPS 140-2 validation, which can vary across hardware and software.
∇ For details about NetApp compliance, see FIPS 140-2.
General Data Protection Regulation
NetApp maintains a comprehensive GDPR strategy. Whether you are a data controller or data processor, NetApp products and services offer the tools necessary to implement programs that support your compliance with the GDPR, and we back our commitments in a number of customer contracts.
∇ For details about NetApp compliance, see NetApp and the GDPR.
California Consumer Privacy Act and California Privacy Rights Act
We are committed to respecting consumers’ rights and operating in ways designed to comply with the CCPA and its expansion, the CPRA. Our contractual commitments to CCPA compliance are based on whether we are collecting your personal information or acting as a service provider to customers who are collecting personal information. NetApp does not sell or share personal information for the purposes of cross-content behavioral marketing.
∇ For details about NetApp compliance, see NetApp, the CCPA, and the CPRA.