# Is GLBNXT certified ISO 27001 and NIS2, and compliant with GDPR? Yes. Compliance is not a layer added on top of GLBNXT; it is built into how the platform is designed and operated. GDPR compliance is ensured through strict data residency controls, data minimisation practices, and the absence of third-party data sharing. Your organisation remains the data controller at all times, and GLBNXT acts as a processor operating within the boundaries you define. For organisations subject to NIS2, GLBNXT supports the security and incident reporting obligations the directive requires. The platform includes audit logging, access controls, and monitoring capabilities that help your security and compliance teams maintain the visibility they need to demonstrate adherence. ***As of March 16, 2026, GLBNXT is formally certified for ISO/IEC 27001:2022, in accordance with the Statement of Applicability version March 12, 2026.*** This certification confirms that the processes and controls governing how GLBNXT manages information security meet an internationally recognised standard, independently verified. For procurement and risk teams, this removes uncertainty from the vendor assessment process and provides a clear, auditable basis for approval. It is worth noting that compliance is always a shared responsibility. GLBNXT provides the infrastructure, controls, and documentation to support your compliance posture, but how you configure and use the platform within your organisation also plays a role. Your account team can provide supporting documentation, data processing agreements, and technical details to assist with your own audit and certification requirements. For full details, including certification documentation and our security policies, visit the [GLBNXT Trust Center](https://www.glbnxt.com/trust-center). --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.glbnxt.com/faq/general/is-glbnxt-certified-iso-27001-and-nis2-and-compliant-with-gdpr.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.