![01_1-ironchip_logo_articulación horizontal_ppal.png]](https://docs.ironchip.com/hs-fs/hubfs/01_1-ironchip_logo_articulacio%CC%81n%20horizontal_ppal.png?height=40&name=01_1-ironchip_logo_articulacio%CC%81n%20horizontal_ppal.png){kind=logo}
Seguridad y cumplimiento (en)
Does Ironchip help comply with the ENS (National Security Framework)?
Yes. Ironchip is listed by the CCN-CERT at the HIGH level—the maximum level of the ENS. The Alcobendas City Council achieved ENS High in record time using Ironchip + GLORIA (S2 Grupo). The CCN-STIC 1633 guide (Ironchip Secure Employment Procedure) is also available.
How does Ironchip help comply with NIS2?
NIS2 requires MFA for remote access (VPN, RDP, Citrix), MFA for privileged accounts, access traceability, onboarding/offboarding management, and detection of anomalous locations. Ironchip directly covers all these requirements.
Ironchip’s internal NIS2 checklist maps each control to the platform's capabilities, including log retention of $\ge 6$ months.
Does Ironchip comply with GDPR regarding location data?
Yes. The electromagnetic analysis generates a technical signature (an environment hash), not personal geolocation data. No GPS positions or identifiable geolocation data are stored. Ironchip’s ISO 27701 certification validates its privacy management system.
What does Ironchip provide for a security audit or PCI DSS compliance?
-
Complete and auditable logs of all access attempts (both successful and failed).
-
Traceability of who is accessing, when, and from where.
-
Alerts for access attempts outside of the usual profile.
-
Documented automatic blocking of suspicious access.
-
Exportable evidence for ENS, NIS2, ISO 27001, and PCI DSS.
-
Configurable log retention: minimum of 6 months for NIS2 and 1 year for PCI DSS.