# Certifications & Attestations > Azure platform certifications that apply to GoSmarter's deployment, and how to request compliance evidence. **URL:** https://www.gosmarter.ai/docs/content/certifications/ **Date:** 0001-01-01 --- ## Certifications and attestations GoSmarter runs on Microsoft Azure, which holds a broad set of compliance certifications. This page explains which certifications apply to our deployment and how to request evidence. This page provides a high-level summary. Detailed assurance evidence can be shared under mutual NDA where appropriate. ### GoSmarter application-level certifications We are progressing our application-level assurance roadmap to provide additional independent validation of our security controls and operating practices. ### Azure platform certifications Microsoft Azure maintains certifications and attestations that cover the core managed services GoSmarter depends on. | Standard | Status | Scope | |----------|--------|-------| | ISO 27001 | Certified | Azure platform — information security management | | ISO 27017 | Certified | Azure platform — cloud security controls | | ISO 27018 | Certified | Azure platform — protection of personal data in the cloud | | SOC 1 Type II | Attested | Azure platform — financial reporting controls | | SOC 2 Type II | Attested | Azure platform — security, availability, processing integrity | | SOC 3 | Attested | Azure platform — publicly available summary | | CSA STAR | Certified | Azure platform — cloud security | | Cyber Essentials Plus | Certified | Azure platform — UK government scheme | | GDPR | Compliant | Azure platform — EU data protection | Full details: [Microsoft Azure Compliance Offerings](https://learn.microsoft.com/en-us/azure/compliance/offerings/) ### How to request compliance evidence We can provide the following for your security review: 1. **Azure compliance reports**: Available through the [Microsoft Service Trust Portal](https://servicetrust.microsoft.com/) (SOC reports, ISO certificates, pen test summaries) 2. **GoSmarter security documentation**: This trust centre and supporting high-level material 3. **Data Processing Agreement information**: Available on request 4. **Compliance call**: A conversation with our team to answer specific questions ### Requesting reports under NDA Some compliance evidence is shared under a mutual NDA. To request it: 1. Contact us at [talktous@gosmarter.ai](mailto:talktous@gosmarter.ai) 2. Specify which reports or information you need 3. We'll arrange NDA execution if required and provide the reports ### Key points for your security team - **Azure platform certifications**: SOC 2 Type II, ISO 27001/27017/27018, Cyber Essentials Plus, and more - **Service Trust Portal**: Self-service access to Azure compliance reports - **Application-level assurance roadmap**: Additional independent validation is in progress - **Evidence available under NDA**: Information that is not publicly available can be shared under a mutual NDA ### Request evidence [Email us](mailto:talktous@gosmarter.ai), [contact us online](https://gosmarter.ai/contact), or [book a compliance call](https://calendly.com/gosmarter-demo) to request the NDA pack.