Vultr Host node uptime

Vultr Control Plane compliance

Current Compliance Attestations:

  • SOC 2 Type 2
  • PCI (Merchant)

Vultr network uptime

2023 Planned Compliance Projects

  • CSA Star Level 1 (Q4)

Deploy Your Instance

2024 Planned Compliance Projects

  • ISO 20000 (Q1)
  • ISO 27001:2022 (Q1)
  • FedRAMP Authorizable (Q4)
  • ISO 27017 Readiness (Q4)
  • ISO 27018 Readiness (Q4)

Vultr Compliance

Vultr is committed to meeting our customers' global risk and compliance requirements, including server availability, security, data protection, and privacy. Vultr has SOC 2 Type 2 attestation by our third party auditors and is in continuous surveillance mode for the SOC 2 framework.

As a Vultr customer you can request the report by submitting a support ticket from the customer dashboard at my.vultr.com. Vultr aligns our hosting services compliances with data centers that are also committed to customer availability, security and privacy (see table below).

Vultr hosting services are deployed with compliance needs in mind so our customers can deploy their own compliance requirement based solutions (i.e., HIPAA, ISO, PCI, SOC etc). By aligning to our data center compliance frameworks, customers that require these same compliance frameworks can leverage a customer compliance playbook for implementing the required controls they are responsible for.

The Vultr compliance roadmap includes:

  • ISO/IEC 20000
  • ISO/IEC 27001:2022
  • ISO/IEC 27017:2022
  • ISO 27018:2022
  • CSA Star Alliance



Security and compliance are shared responsibilities between Vultr, our customers, and any third parties that deliver any products or services for Vultr. Vultr manages and secures the platform's control plane, networks, and cloud storage. Our data centers are responsible for the physical security controls. Customers are responsible for their applications, data, middleware, OS, and storage.

Vultr’s risk management policy requires conducting assessments on all third parties. Vultr’s vendor management program has stringent policies, processes, and controls for vetting all third parties that may be required to deliver any Vultr product or marketplace service.

When our customer use Vultr along with products and services provided by our data centers, service providers, and vendors, Vultr delivers a compliance based solution aligning to many frameworks and regulations that carve out many compliance controls not required to be implemented by customers.

For questions regarding a customer compliance playbook or any other compliance, please email grc@vultr.com.

Datacenter Compliance

Datacenter SOC 1 Type 2 SOC 2 Type 2 ISO 27001 PCI-DSS NIST 800-53 HITRUST
Amsterdam
Atlanta
Bangalore
Chicago
Dallas
Delhi NCR
Frankfurt
Honolulu
Johannesburg
London
Los Angeles
Madrid
Manchester
Melbourne
Mexico City
Miami
Mumbai
New Jersey
Osaka
Paris
San Jose
Santiago
Sao Paulo
Seattle
Seoul
Silicon Valley
Singapore
Stockholm
Sydney
Tel Aviv
Tokyo
Toronto
Warsaw

Additional resources

Compliance FAQs

FAQ

Are Vultr services GDPR compliant?

Vultr is committed to transparent and secure handling of all personal data on our network. Our processes have gone through an extensive procedural and legal review to ensure we fully meet the requirements set forth in the EU General Data Protection Regulation (GDPR) legislation.

What is Vultr's role with respect to GDPR?

Vultr acts as both a data controller and a data processor. Vultr acts as a data controller for customer information that we collect to process payments and provide customer support. When a customer uses our services to process personal data, Vultr acts as a data processor.

Does Vultr offer a Data Processing Addendum?

If GDPR applies to your organization and you need a DPA to satisfy GDPR requirements, Vultr will provide a DPA for eSignature. Please contact your account manager and/or make a request through the customer support system here.

How can I delete or retrieve the data I have with Vultr?

We've created a step by step document that shows you how to delete all your hosted data in our Vultr Docs section. Please review this guide: https://www.vultr.com/docs/vultr-data-portability-guide/.

Are Vultr services GDPR compliant?

Vultr is committed to transparent and secure handling of all personal data on our network. Our processes have gone through an extensive procedural and legal review to ensure we fully meet the requirements set forth in the EU General Data Protection Regulation (GDPR) legislation.