Compliance
Avaya is committed to securing the data we process on behalf of our customers. We comply with laws, regulations, policies, and customer commitments.
Structured for success
Avaya’s Certifications Team oversees the engagement of independent third-party assessors to review the security of our cloud offerings. The team is strategically placed under the Ethics & Integrity umbrella to ensure independence and proper oversight. The current status of third-party certifications for our offers is below.
Security
Avaya maintains two security teams.
The Corporate Security team oversees the protection of people and assets and manages business continuity and crisis management planning initiatives to ensure the safety of our employees and operations.
The Information Security team ensures the protection and availability of Avaya’s information assets, which include information entrusted to us by our customers. We understand that threats to our network and information come from many different vectors and are extremely fluid. We approach security by:
- Security operations and best practices
- Platform and network security
- Availability and continuity incident response
- Continuous assessment and improvement

Digital Operational Resilience Act (DORA)
The Digital Operational Resilience Act (DORA) is an EU regulation that aims to enhance financial entities' IT security and operational resilience, including banks, insurance companies, and investment firms. DORA mandates stringent requirements for ICT risk management, incident reporting, operational resilience testing, third-party risk management, and information sharing.
Sustainability