PCI Data Security Standards

The Catalyst Porirua Data Centre is compliant against the PCI Data Security Standards. We are now undertaking the same certification process for our Wellington Data Centre.

PCI Certificate of Compliance - Catalyst Porirua

New Zealand Government

Catalyst is the first cloud provider to address NZ Government questions on cloud security.

The Government Chief Information Officer (GCIO) provides guidance to New Zealand Government agencies on how to assess the information security and privacy risks of cloud computing. Catalyst has published a document that addresses the security and privacy risks outlined by GCIO, providing clarity and confidence to agencies to migrate or develop new systems using the Catalyst Cloud.

Catalyst Cloud Security and Privacy Considerations v2

Cloud Risk Assessment Tool v2

Cloud Code of Practice

The CloudCode was developed by the New Zealand Cloud Computing industry, facilitated by the Institute of IT Professionals NZ and ensures that:

  1. Service providers will not say something is "Cloud Computing" unless it really is;
  2. Service providers will disclose important details about their Cloud products and services, enabling customers to make informed decisions about the use of the services.

Catalyst is a signatory of the CloudCode and discloses information about the Catalyst Cloud as required by the standard.

Catalyst Cloud - CloudCode Disclosure Statement

High availability on the Catalyst Cloud

Our documentation outlines the physical infrastructure and software features that make services hosted on the Catalyst Cloud highly available and resilient. It covers built in features that are inherited by every project and services that can be used to enhance the availability of web applications and web sites hosted on the Catalyst Cloud.

DDoS mitigation

The following document describes what Catalyst does to reduce the risk of DDoS attacks and what customers can do in addition to it to further mitigate this risk.

Catalyst Cloud DDoS Mitigation