Compliance and accreditations image

Ensuring Compliance is not an afterthought

We take our compliance seriously. As the threats are ever increasing from cyber attacks to physical intrusions, we make sure our Data Centres take compliance seriously.

Our in-house compliance team are here to ensure that it’s not just accreditations, but policies and procedures are active and effective 24/7/365. For us, it is more than just passing an audit, but about achieving a culture that puts compliance first.

Supporting our customers, we are here to ensure we can facilitate any customer audits, from any industry.

ISO 27001 Logo

ISO 27001

Custodian Data Centres have been ISO 27001 certified since 2012, underlining our commitment to preserving the confidentiality, integrity and availability of all physical and electronic information assets managed by the business.

ISO 27001 is the most widely accepted certification available in supporting information, physical security and business continuity. The certification ensures; risks and threats are assessed and managed appropriately, physical security processes are enforced consistently and that audits are regularly conducted, including tests of security and CCTV monitoring

Find Out More

Cyber Essentials Plus

Custodian is Cyber Essentials Plus verified and certified, demonstrating our continued commitment to cybersecurity. It is evidenced by our effective security controls protecting our business from cyberattacks.

Cyber Essentials Plus is an effective, Government backed scheme that helps organisations protect against a whole range of the most common cyber attacks. It includes a technical audit of the systems that are in scope for Cyber Essentials. Organisations applying for Cyber Essentials Plus must also pass an on-site assessment and a vulnerability scan of internal and external facing systems.

Find Out More
PCI DSS Compliant


Custodian’s flagship data centre in Kent, exceeds the physical criteria for requirements 9 and 12 of the PCI DSS compliance framework and we are audit friendly.

Requirement 9: Restrict physical access to cardholder data.

Requirement 12: Maintain a policy that addresses information security for all personnel.

The PCI DSS (Payment Card Industry Data Security Standard) is an information security standard designed to reduce payment card fraud by increasing security controls around cardholder data.

Find Out More


Custodian are an approved G-Cloud service provider with listed services on the Government Digital Marketplace.

G-Cloud is a government initiative designed to make it easier for government departments and public sector organisations to access cloud technology and services. Through G-Cloud, public sector organisations have access to a digital marketplace of cloud vendors that have been assessed and approved to provide their services to government and the public sector.

Find Out More

Latest insights

Subscribe to our Newsletter

Sign up to the Custodian DC monthly newsletter to keep up to date with all the latest from the industry.