Compliance

Avaya is committed to securing the data we process on behalf of our customers.  We comply with laws, regulations, policies, and customer commitments.  

Structured for success

Avaya’s Certifications Team oversees the engagement of independent third-party assessors to review the security of our cloud offerings. The team is strategically placed under the Ethics & Integrity umbrella to ensure independence and proper oversight. The current status of third-party certifications for our offers is below.

Security

Avaya maintains two security teams.   

The Corporate Security team oversees the protection of people and assets and manages business continuity and crisis management planning initiatives to ensure the safety of our employees and operations.

The Information Security team ensures the protection and availability of Avaya’s information assets, which include information entrusted to us by our customers. We understand that threats to our network and information come from many different vectors and are extremely fluid. We approach security by: 

  • Security operations and best practices
  • Platform and network security
  • Availability and continuity incident response 
  • Continuous assessment and improvement 

ISO 9001 Logo

ISO 9001

Learn more
ISO Logo

ISO 27001

Learn more
HIPAA Compliance

HIPAA Compliance

Learn more
PCI Compliance

PCI compliance

Learn more
FedRAMP Compliance

FedRAMP compliance

Learn more
Trusted Cloud Provider

Trusted Cloud Provider

Learn more

Digital Operational Resilience Act (DORA)

The Digital Operational Resilience Act (DORA) is an EU regulation that aims to enhance financial entities' IT security and operational resilience, including banks, insurance companies, and investment firms. DORA mandates stringent requirements for ICT risk management, incident reporting, operational resilience testing, third-party risk management, and information sharing.