Rescale Compliance Practices

Rescale puts compliance and security first in everything we do. We are committed to protecting customer data and following the strictest compliance standards.

Our compliance and security practices are built on three pillars: Trust, data sovereignty, and privacy.

Below are the following audits we conduct to ensure a customer’s trust that Rescale will protect their data and their customers’ data.

COMPLIANCE AUDITS

ISO 27001

Rescale has ISO 27001 Certification and completes annual surveillance audits to maintain compliance. ISO 27001 is an international standard that manages information security. The scope of the audit incorporates company and platform security.

SOC 2

Rescale is SOC 2 attested and completes an annual SOC 2 Type 2 audit, including a security penetration test. The SOC 2 report provides a detailed account on Rescale’s security measures in place for both the company and the Rescale Platform.

FedRAMP (Moderate)

Rescale has been authorized for FedRAMP at the Moderate authorization. The FedRAMP program provides a standardized approach to information security of cloud products for Federal agencies. The scope of this offering incorporates our government platform and FedRAMP authorized infrastructure.

SELF-ATTESTATIONS

TISAX (Level 1)

Trusted Information Security Assessment Exchange (TISAX) enables mutual acceptance of Information Security Assessments in the automotive industry. It provides a common assessment and exchange mechanism. TISAX follows the ISO 27001 framework, but Rescale additionally fills out the Level 1 questionnaire.

CSA

Star RegistryThe CSA STAR Certification is a rigorous third party independent assessment of the security of a cloud service provider. Rescale submits an annual assessment to the registry.

NIST 800-171 (DFARS)

Defense Federal Acquisition Regulation Supplement (DFARS) provides requirements for protecting the confidentiality of Controlled Unclassified Information (CUI). This maps to the NIST 800-171 framework, which Rescale enforces as part of our standard security practice.

EXPORT COMPLIANCE

ITAR

Rescale maintains active registrations under the International Traffic in Arms Regulations (ITAR) to control the export of defense and military-related technologies from the U.S. Rescale ensures that only U.S. “persons” can access their respective systems. Rescale performs its validation check for employees and customers accessing the Rescale ITAR platform.

EAR

Export Administration Regulations (EAR) govern the export of “dual-use” items. These items include goods and related technology, including technical data and technical assistance, which are designed for commercial purposes, but which could have military applications, such as computers, aircraft, and pathogens. Rescale supports our customer’s EAR compliance via access controls, auditing & encryption.

PRIVACY REGULATIONS

Rescale is compliant with several privacy regulations and our Privacy Policy describes and explains how Rescale collects, uses, and shares information through our website.

HIPAA

Health Insurance Portability and Accountability Act (HIPAA) is a privacy law that protects health information. Rescale’s existing security controls support HIPAA compliance for customers.GDPRRescale enforces proper technical and organizational measures to ensure compliance with the European Union (EU) General Data Protection Regulation (GDPR).

Rescale signs data processing agreements (DPAs) with Controllers to legitimize data transfer while protecting personal data. DPAs contain EU standard contractual clauses (EU Model Clauses) to legitimize data transfers to outside the EU or European Economic Area where applicable.

CCPA

The California Consumer Privacy Act (CCPA) indicates privacy rights and consumer protections for California residents. Rescale has a privacy policy that ensures CCPA compliance (https://rescale.com/company/legal/ccpa/)

Privacy Policy

The Rescale Privacy Policy can be accessed at https://www.rescale.com/legal/privacy/.

The Rescale Platform: Compliance Assured

The Rescale Platform provides a holistic security approach exceeding modern enterprise standards. As a platform, Rescale helps customers flexibly configure their own security environment. Internally, Rescale has a mature security program and operates with security as its top priority.

Rescale is committed to ensuring trust with their customers and is available to discuss any additional security questions at security@rescale.com.

Learn more about the secure intelligence of the Rescale platform and
how it can accelerate your R&D innovation while reducing your risks.

Or download the Rescale Zero Trust Security brief.

Arpita Husain

Arpita Husain serves as the privacy and compliance principal at Rescale, where she uses her information security and data management expertise to keep customer data safe.

View all posts

Cookie	Duration	Description
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
player	1 year	Vimeo uses this cookie to save the user's preferences when playing embedded videos from Vimeo.

Cookie	Duration	Description
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.
sync_active	never	This cookie is set by Vimeo and contains data on the visitor's video-content preferences, so that the website remembers parameters such as preferred volume or video quality.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_UA-32985745-1	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
utm_campaign	past	Google Ad Services sets this cookie to store session campaign value if present.
utm_content	past	This cookie is used for storing the session content value if present.
utm_source	past	This cookie is used to record from where the visitor came to the website orginally. This information is used by the website operator to know the efficiency of their marketing.
utm_term	past	This cookie is used to record from where the visitor came to the website orginally. This information is used by the website operator to know the efficiency of their marketing.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
_mkto_trk	2 years	This cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
personalization_id	2 years	Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
utm_medium	past	This cookie is used to record from where the visitor came to the website orginally. This information is used by the website operator to know the efficiency of their marketing.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Duration	Description
_chtbl	session	No description available.
_dtses	30 minutes	No description available.
_dtuid	10 years	No description available.
BIGipServersj30web-nginx-app_https	session	No description
email	past	No description available.
gclid	past	No description
handl_ip	1 month	No description available.
handl_landing_page	1 month	No description available.
handl_original_ref	past	No description available.
handl_ref	past	No description available.
handl_url	1 month	No description available.
li_gc	2 years	No description
muc_ads	2 years	No description
username	past	No description available.

Rescale Platform

Overview

HPC & AI Software

HPC & AI Architectures

Security & Compliance

Ecosystem Integrations

Pricing

HPC as a Service

Intelligent Batch

Elastic Cloud Workstation

Storage Fabric

Enterprise Management

Multi-Team Management

Performance Management

Software Publisher

Digital Engineering

AI Physics

Knowledge Management

Computational Pipelines