Our Certifications

There is a significant difference between software claiming to comply with standards and the software tools receiving certifying compliance. We don’t believe our customers should have to verify that WipeDrive does what we claim, so we are have taken the necessary steps to be certified by Common Criteria, HIPPA, ADISA, NYCE and NCSC.

Get A FREE WipeDrive Enterprise Trial

Evaluate the global leader in data erasure software and discuss your use case with our experienced experts and try WipeDrive Enterprise for free.

WipeDrive Certifications

WipeDrive’s EAL 2+ Certification and other certifications means that it complies with all of the following U.S. and international disk wiping standards:

Verified Business Associate Since 2018

HIPAA Certification

The HIPAA Privacy regulations require health care providers and organizations, as well as their business associates, to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared. This applies to all forms of PHI, including paper, verbal, electronic, etc.

The HIPAA Seal of Compliance has become the health care industry standard for verification that the federally-mandated HIPAA standards, regulated by the Department of Health and Human Services (HHS) Office for Civil Rights (OCR), are fully addressed and incorporated into an effective, organization-wide compliance program.

NATO NIAPC Certified

The NATO Information Assurance Product Catalogue (NIAPC) established under Directive AC/322-D(2010)0042 (22-09-2010), provides NATO nations, and NATO civil and military bodies with a catalogue of Information Assurance (IA) products, Protection Profiles and Packages that are in use or available for procurement to meet operational requirements.

According to NATO NIAPC “WipeDrive is a disk sanitizing tool that permanently erases all data from hard drives and other data storage devices. This includes but is not exclusive to: HPA partitions, DCO partitions, remapped sectors, operating systems, programs, and user files. This data is permanently destroyed as to make any type of forensic data recovery impossible.”

NYCE Certificate Of Compliance

WipeDrive Enterprise has achieved NYCE Certificate of Compliance with Mexican Standard NMX-I_9126-2-NYCE-2011 as a data erasure solution. NYCE is a strategic partner of the software industry and provides safety and confidence evaluations. With more than 20 years of operation in Mexico, NYCE is a certification trusted by Mexico’s largest companies and government agencies.

NYCE evaluated and confirmed that WipeDrive complies with standards established at the national (NOM or NMX) and international (ISO and IEC) evaluation levels. NYCE reviews the results of a series of tests, and analysis to evaluate each of the characteristics required by the regulation and certifies WipeDrive Enterprise as compliant.

SSD certification

ADISA Certification

The ADISA certification process is multi-layered and requires testing a Solid State Storage Device chipset against known threats and data residue after it has been securely overwritten by WipeDrive.

The testing process for each claims test follows the published ADISA test methodology. This certification verifies that any SSD securely overwritten by WipeDrive meets all criteria specified in the ADISA Threat Matrix. The ADISA Threat Matrix defines a series of capabilities and risks that various threat agents can pose on the security of a device.

CPA Certification

National Cyber Security Centre

The National Cyber Security Centre (NCSC) is the UK’s authority on cyber security. The NCSC has access to some of the most sophisticated capabilities available to government. Their main purpose is to reduce the cyber security risk to the UK by improving its cyber security and cyber resilience.

NCSC uses CPA standards to evaluate commercial off-the-shelf products, and their developers, against published security and development standards.

A security product that passes assessment is awarded Foundation Grade certification. This means the product is proven to demonstrate good commercial security practice and is suitable for lower threat environments.

Norwegian National Security Authority

NSM approved 

Norwegian National Security Authority

NSM grants approval for the use of WipeDrive to delete data on storage media, cf. the Business Safety Regulations §§ 16, 17 and 23. According to an overall assessment of the documentation, it is concluded that the deletion tool satisfies requirements for secure deletion of data according to Common Criteria, current standards and NSM’s Handbook on the destruction of documents and storage media.

Certification
vs. compliance

Why is certification important?

There is a significant difference between software claiming to comply with standards and the National Security Agency (NSA) certifying compliance. We don’t believe our customers should have to verify that our software does what we claim, so we are Certified by Common Criteria to EAL 2+. This in depth certification verifies that WipeDrive works the way it is designed.