Customer is solely responsible for ensuring it is in compliance with any applicable laws and regulations. Box does not provide legal advice or any representations that Box will ensure Customer is in compliance with applicable laws or regulations. Customer acknowledges that purchasing any services or products from Box does not ensure or provide an attestation that Customer is in compliance with specific compliance, legal, or regulatory requirements.
Box Zones is designed for organizations with certain local data residency, protection, and privacy concerns. It enables organizations in Europe, Asia, Australia, and Canada, as well as multinational firms to benefit from cloud content management and collaboration.
The Box Zones offerings complies with and supports a number of compliance standards.
|Non-US Partners||General Security Standards (ISO 27001, etc)||Healthcare Compliance (Storage of ePHI)||Retail/Financial Institution Compliance (Storage of PCI data)||US Federal Compliance (FedRAMP)|
|IBM||Compliant||In Progress||Compliant||Not Compliant|
|US Partners||General Security Standards (ISO 27001, etc)||Healthcare Compliance (Storage of ePHI)||Retail/Financial Institution Compliance (Storage of PCI data)||US Federal Compliance (FedRAMP)|
*Please note that this page was last updated on May 16, 2018. For the most up-to-date information regarding certifications of our Zones Service Providers, please consult the Service Provider's website.
If you have additional questions around Box’s compliance efforts, please contact us at email@example.com for further information.