Technical measures at data centers

Location of data centers

The data centers are located in the Netherlands (EU). A specific data center is used for customers in the APAC region. This data center is located in Singapore.

Security of the data center buildings

Data center facilities are protected through layered physical and environmental security measures, including:

• Physical security: 24×7×365 monitoring by security staff and camera surveillance, intrusion detection and alarms, and strict access control using digital registration, access cards, biometric verification, and locked server racks.

• Power supply: redundant power infrastructure with at least N+1 capacity, independent emergency generators with on‑site fuel storage, and separate A and B power feeds to rack infrastructure.

• Fire prevention: addressable fire detection systems, smoke detection, and gas‑based fire suppression in technical areas.

• Cooling: high‑capacity cooling systems with at least N+1 redundancy, controlled temperature and humidity using CRAC units.

Data centers are certified against ISO 27001 and NEN 7510.

Network and infrastructure

Server room cabling is physically separated, with distinct routes for power, fibre, and network cabling.

Network infrastructure is distributed across multiple data centers and designed with redundancy for routers, core switches, internal and external connectivity, including multiple connections to transit providers and internet exchanges. Geographically separated routes and dynamic routing ensure traffic is rerouted automatically in the event of component failure.

Platform infrastructure 

The platform infrastructure is designed with redundancy, security, and continuity as key principles, including:

• Redundant server and storage infrastructure through virtualization

• Disk‑level encryption of storage

• Backups using snapshot technology, stored in a separate data center, with backup frequency and retention defined in the SLA

• A fully separated cold‑standby disaster recovery facility located in a separate data center

• Backup and disaster recovery facilities running on hardware separate from production systems

• Secure communication using HTTPS/TLS

• Anti‑DDoS infrastructure protecting critical network and platform components

• Logical access controls based on password policy and/or VPN keys, IP allow lists for access to information systems, and firewalls

• Network segmentation through the use of VLANs

• Standard firewall and antivirus protection on all servers

Additional services

Operating system security updates are applied daily, with accelerated updates in the event of critical vulnerabilities or security incidents.

Organization hosting provider (Exonet)

The hosting provider operates under defined organizational security measures, including confidentiality obligations for all employees, a Code of Conduct, and the exclusion of temporary staff from operational roles. 

A designated security officer is in place, and security awareness training is provided to all employees.