Well, if you need some logos, we provide these:
Blue Clever Cloud logo
svg · png
Red Clever Cloud logo
svg · png
Dark Clever Cloud logo
svg · png
White Clever Cloud logo
svg · png

Security at Clever Cloud

Privacy by Design

To send sensitive information, please take a look at our Security Policy.

Overview

At Clever Cloud, security is not an afterthought. The whole platform was designed with security in mind. Most of security work is systemic: we work on eliminating and mitigating entire classes of vulnerabilities before handling specific issues. This allows our platform to be resilient against new and unknown threats. We see and practice security as a process, a background task that underlines everything we do, not as something that’s tacked on code after it’s been written. The two pillars of our security policy are immutable infrastructure and the avoidance of trusted networks.

Immutable infrastructure

Every piece of code deployed on Clever Cloud is deployed in a short-lived, reproducible environment. Even if one of your applications gets compromised, the compromised code will automatically go away at the next deployment. This is particularly useful for commonly targeted applications like PHP CMSs.

No trusted network

It is common to place applications in a shared, unrestricted network space. By avoiding that, we provide security in depth: breaking a gate will grant you access to the next gate, not to the whole castle. This greatly reduces lateral movement, and encourages better security processes. By default, virtual machines are isolated from the network.

Traffic must be explicitly allowed, rendering the common issue of having a component mistakenly exposed to the Internet effectively impossible. All incoming traffic is untrusted and has to be allowed to reach the applications.

Vulnerability Reporting

Please see our security policy.

Security Assessments and Compliance

The Clever Cloud platform is regularly audited as part of audits and pentests run for our customers by third-party auditors. All the platform-level conclusions are forwarded to the security team and acted upon. If you wish to audit or pentest applications running on Clever Cloud, please contact us.

Data Centers

Providing first-class security along with our datacenter partners is our priority. We constantly work to enhance our security protocols and heavily fight all possible threats, ensuring minimum risk to protect your infrastructures and physical assets.

Name of the hosting providerIliad datacenter
Identification No. of the hosting provider433 115 904
Address of the registered office8 rue de la ville l'Evêque 75008 Paris FRANCE
Payment conditions by CLEVER CLOUD of the hosting provider’s invoicesThirty (30) days in advance

Iliad Datacenter features
  • Multi-stage security containment systems
  • Private property with iron fences, gates and restricted access
  • Secured car park
  • Secured loading docks
  • Mantraps and strictly enforced protocols regarding entry access
  • Biometrics authentication and RFID Key-card access
  • Intrusion detection systems
  • Interior managed security zones
  • 24/7 internal & external CCTV site coverage
  • 60 days online video storage
  • Dedicated data halls, suites, and cages to minimize tra c.
  • Temperature and humidity monitored, controlled and managed to industry standards
  • 24×7 on site security guards
  • 24x7 on-site NOC services
  • 24x7x365 on-site technical team
  • Pre-action, zoned dry-pipe sprinkler (water mist) systems for re suppression
  • Natural risk free locations
  • WiFi network access and cell phone repeaters/boosters through-out the facility
Certifications by Iliad Datacenter:
  • ISO 50001 (ENMS609673)
  • Tiers III design by the Uptime Institute (2014)
  • pci-DSS (pending)
  • HDS (pending)
  • ISO 27001
Fire Detection and Suppression
  • Water mist system
  • VESDA smoke detectors
Power

The data center electrical power systems are designed to be fully redundant and maintainable without impact to operations, 24 hours a day, and seven days a week. Uninterruptible Power Supply (UPS) units provide back-up power in the event of an electrical failure for critical and essential loads in the facility. Data centers use generators to provide backup power for the entire facility.

  • 2x12 MW power supply
  • 20 UPS (11MVA) distributed in 4 compartmentalize rooms
  • 12 Diesel Generators with 72 hours run time at full load
  • 4 low voltage switchgear for IT equipments (10 MVA)
  • 2 low voltage switchgear for mechanical (3.75 MVA)
Climate and Temperature Control
  • 2 independent cooling system
  • 2Free-cooling system
  • 2Realtime monitoring and automatic regulation
  • 2Optimized cold aisle containment
  • 28 chillers

PCI

We use PCI compliant payment processor Stripe for encrypting and processing credit card payments. Clever Cloud infrastructure provider is under the process of being PCI certified.

Protection Of Client Personal Data

According to our Terms of Use, CLEVER CLOUD’s commitments under the protection of CLIENT’s Personal Data (the “Personal Data” under Regulation UE n°2016/679 of April 27, 2016 “GDPR”) are described in our Terms of Use.

All the data are hosted in France by default (other regions are optionally available) and are fully GDPR compliant (we've done the work to assess our own data collection, storage practices and business practices comply with the GDPR).