Compliance of Managed Kubernetes with 152-FZ
Managed Kubernetes complies with the requirements of Federal Law No. 152-FZ "On Personal Data" — you can store and process users' personal data of the first level of security (UZ-1).
In addition to Managed Kubernetes, other products in Selectel's cloud platform meet the requirements for Level 1 security:
- Cloud servers, диски, сети, образы, scheduled backups, load balancers;
- Managed databases;
- Container Registry;
- Object Storage.
Areas of responsibility
Responsibility for the information security of personal data and compliance with legal requirements is shared between Selectel and the user.
The list of security measures and more detailed information on the areas of responsibility can be found in Annex 1 and Annex 2 to the Personal Data Security Measures Performance Assessment Report for the first level of protection.
User
The user is responsible for the information security of their own infrastructure based on Managed Kubernetes clusters:
- secures Managed Kubernetes worker nodes, including operating systems and applications;
- provides network security for the networks that are created;
- organizes access control to work nodes, applications and processed data.
Selectel
Selectel is responsible for the information security of the service infrastructure of the cloud platform and ensures:
- physical security and fault tolerance of equipment (hardware infrastructure);
- network security of service networks, including Managed Kubernetes cluster service networks;
- security of the virtualization platform and service servers;
- Managed Kubernetes cluster master node security.
Cost
152-FZ compliance is included in the cost of Managed Kubernetes — learn more about payment.
Order for personal data processing
To conclude a personal data processing order create a ticket.
We will prepare the order and send it to you for signature: in paper form or via electronic document management.