TISAX (Trusted Information Security Assessment Exchange), governed by the ENX Association on behalf of the German VDA (Verband der Automobilindustrie, the German Automobile Industry Association), provides a single industry-specific security framework for assessing information security for the wide landscape of suppliers, OEMs, and partners that contribute to the automobile supply chain.
Google LLC is a TISAX participant and five GCP EU regions were assessed at assessment level 3 (AL 3), meaning we were assessed against the assessment objectives required for data with a very high need for protection under the definition of TISAX, such as data classified as secret. An additional six GCP regions and global G Suite data center locations were assessed at assessment level 2 (AL 2), meaning they were assessed against assessment objectives required for data with a high need for protection as defined by TISAX, such as data classified as confidential. TISAX Assessments are conducted by accredited audit providers that demonstrate their qualification at regular intervals. TISAX and TISAX results are not intended for the general public. The result is exclusively retrievable over the ENX Portal.
The scope ID and assessment ID for our GCP European data centers at assessment level 3 are SFPV4H and ATYR2F-1, respectively.
The scope ID and assessment ID for our data centers at assessment level 2 are SXTNZX and ATP8KR-1, respectively.