Security at NFON

Data security is a top priority at NFON.

We operate our services in full compliance with GDPR requirements. To ensure compliance with regulations, we store data in georedundant data centers in Germany.

On this page, you can find a detailed overview of our security activities.

Data security is a constant process.

Our IT team is always working on fixing bugs and vulnerabilities as they come up. With every update we improve our security.

For further details, see our pages below:

Common Vulnerabilities and Exposures

Here we keep a list of known vulnerabilities and their details.

Visit page

Responsible Disclosure Policy

Here we explain how to report vulnerabilities properly.

Visit page

Security Hall of Fame

Here we honor security researches who helped NFON.

Visit page

We are ISO 27001 certified.

  • The international standard ISO/IEC 27001 specifies the requirements for an information security management system, in the context of an organization. 
  • This certificate confirms our compliance with the relevant global norms and standards.
  • We are regularly checked by independent institutions in order to obtain this certificate.

NFON Information Security Guideline

NFON Group has established an information security management system (ISMS) in accordance with the requirements of DIN EN ISO/IEC 27001:2017. A central component of the ISMS is, among other things, the guideline on information security.

The document below is the public guideline for information security of NFON AG.