Whitepaper
This whitepaper is designed to help cloud customers establish their security compliance system on the cloud to comply with MLPS 2.0 easier.
Practices Manual
This practices manual guides customers, especially e-commerce merchants, on how to set up and deploy a PCI DSS compliant environment on Alibaba Cloud.
TOMs
This document describes Alibaba Cloud’s Technical and Organizational Measures (TOMs)
Security Compliance Best Practices
For General Purpose Use
Self-Assessment
CSA CAIQ v3.0.1
The CSA Consensus Assessment Initiative Questionnaire (CAIQ) feedback describes how Alibaba Cloud complies with the best practices issued by CSA.
Security Guide
Alibaba Cloud Enterprise Cloud Migration Security Guide
This document helps cloud customers design and build a comprehensive cloud security protection system based on Alibaba Cloud products and ecosystems to protect assets on the cloud.
Whitepaper
Alibaba Cloud Security Compliance Whitepaper for MLPS 2.0 (CCSP 2.0) Baseline
This whitepaper is designed to help cloud customers establish their security compliance system on the cloud to comply with MLPS 2.0 easier.
Practices Manual
Alibaba Cloud PCI DSS Practices Manual
This practices manual guides customers, especially e-commerce merchants, on how to set up and deploy a PCI DSS compliant environment on Alibaba Cloud.
Security Guide
Securing the Data Center in a Cloud-First World
This whitepaper looks at steps to protect your data center infrastructure.
Security Guide
Manage and Protect Your Critical Data on the Cloud
This whitepaper describes the benefits of using the Sensitive Data Discovery and Protection (SDDP) system to manage and protect critical data.
User Guide/Whitepapers
For Selective Sectorial Regulatory Compliance
User Guide
Alibaba Cloud User Guide - MAS Technology Risk Management Guidelines
In this guide, Alibaba Cloud provides cloud product and service features that enable customers to fulfill their responsibilities in meeting the security requirements in MAS TRM.
User Guide
Alibaba Cloud User Guide - MAS Guidelines on Outsourcing
In this user guide, Alibaba Cloud has laid out the measures and controls in mitigating the associated risks, especially risks associated with Cloud Services that have been denoted by MAS.
User Guide
Alibaba Cloud User Guide - Banking Regulations & Guidelines in Hong Kong
In this user guide, Alibaba Cloud has laid out the measures and controls in mitigating the associated risks, especially risks associated with Cloud Services that have been denoted by MAS.
User Guide
Alibaba Cloud User Guide - Insurance Regulations & Guidelines in Hong Kong
This article gives important information to help insurance customers in Hong Kong partner with Alibaba Cloud during digital transformation.
User Guide
Alibaba Cloud User Guide - Rules and Standards of Securities and Futures Commission in Hong Kong
In this document, Alibaba Cloud clarifies its responsibilities and the capabilities provided to Licensed Corporations ("LCs") to help them migrate to Alibaba Cloud.
User Guide
Alibaba Cloud User Guide - Financial Services Regulations & Guidelines in Malaysia
In this user guide, Alibaba Cloud explains how we facilitate the financial institutions in Malaysia to meet the requirements of the BNM’s guidelines.
User Guide
Alibaba Cloud User Guide on Risk Management in Technology (RMiT)
In this guide, Alibaba Cloud provides cloud product and service features that enable customers to fulfill their responsibilities in meeting the security requirements in RMiT.
User Guide
Alibaba Cloud User Guide - Financial Regulations & Guidelines in Australia
This article details Alibaba Cloud’s responsibilities and controls in the key focus areas for Australian financial institutions.
User Guide
Alibaba Cloud User Guide - Financial Regulations & Guidelines in India
In this guide, Alibaba Cloud explains and mitigates the obstacles that our financial institution customers in India may encounter when migrating to the cloud.
User Guide
Alibaba Cloud User Guide - Financial Regulations & Guidelines in Japan
This guide helps financial institutions in Japan meet the requirements of the guidelines issued by the FISC.
User Guide
Alibaba Cloud User Guide on Government Regulations and Guidelines in Japan
This guideline helps government agencies in Japan meet the requirements of the guidelines published by NISC.
Whitepaper
HIPAA Whitepaper
This whitepaper describes multiple Alibaba Cloud products and services compliance under HIPAA security requirements.
User Guide
Alibaba Cloud User Guide - Regulatory Compliance Guidelines in Indonesia
In this user guide, Alibaba Cloud clarifies how the local infrastructure and service offerings can help customers enhance data security, fulfill data residency requirements, and perform IT risk management in Indonesia.
User Guide
Alibaba Cloud User Guide - Bank of Thailand (BOT) Regulations & Guidelines
In this user guide, Alibaba Cloud elaborates on how we facilitate the financial institutions in Thailand to meet the requirements in the BOT’s guidelines.
Data Protection/Privacy
For Country Specific Privacy Compliance
User Guide
Alibaba Cloud User Guide on Hong Kong Personal Data (Privacy) Ordinance (Cap.486)
This user guide contains explanation of the Six Data Protection Principles ("DPPs") in Hong Kong Personal Data (Privacy) Ordinance (Cap.486) and how Alibaba Cloud's Privacy by Design ensures security and data protection from the beginning.
Whitepaper
Macau PDPA Whitepaper
This whitepaper provides useful guidance on how Alibaba Cloud's security practices can support the compliance requirements under the Personal Data Protection Act of Macau (or Macao.)
Whitepaper
Amendments to the Personal Data Protection Act & Spam Control Act
This white paper provides updates on the revised PDPA and how Alibaba Cloud are keeping up with the changes and help you meet these requirements when you are using our cloud products and services.
Still have questions?
For requests related to security compliance and privacy, please contact the Trust Center
Contact Trust Center
