Introducing OPSWAT Threat Intelligence Similarity Search Learn More

Compliance and Certifications

ISO 9001 Certification

OPSWAT has achieved ISO 9001:2015 Certification of its business continuity management system to support the quality management system (QMS) supporting the definition, design, development, production, and maintenance of OPSWAT product and support offerings. The certification was performed by Schellman & Company, LLC, an ANAB accredited Certification Body based in the United States. View the certificate

Common Criteria Certification

OPSWAT MetaDefender Core and MetaDefender Kiosk were evaluated by the Canadian Centre for Cyber Security and successfully met all the requirements at Common Criteria Evaluation Assurance Level 2 with augmentation for Flaw Remediation to earn the final designation of EAL2+ (ALC_FLR. 1) as of March 3, 2021. View the certification

ISO 27001 Certification

OPSWAT has achieved ISO/IEC 27001:2013 certification. An independent examination of the OPSWAT Information Security Management System (ISMS) and OPSWAT MetaDefender and MetaAccess services by Schellman & Company, LLC confirmed our commitment to security and regulatory compliance as part of the certification evaluation. View the certificate

GSA Advantage

OPSWAT products are available on the GSA Multiple Award Schedule through Oct 22, 2024. For more information, visit GSA Advantage


SOC for Service Organizations reports is designed to help service organizations that provide services to other entities, build trust and confidence in the service performed and controls related to the services through a report by an independent CPA. SOC 2 controls are evaluated at a Service Organization that is relevant to Security, Availability, Processing Integrity, Confidentiality or Privacy related to systems the service organization uses to process users’ data and the confidentiality and privacy of the information processed by these systems.

How to request a SOC2 report


The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment. SecureTrust helps OPSWAT to meet PCI-DSS compliant standards and protect customers.

Cyber Essentials Certificate of Assurance

Cyber Essentials is a Government-backed, industry-supported scheme to help organisations protect themselves against common online threats. The UK Government requires all suppliers bidding for contracts involving the handling of certain sensitive and personal information to be certified against the Cyber Essentials scheme. OPSWAT is certified in Cyber Essentials

IASME Governance Standard GDPR Certificate of Assurance

Closely related to Cyber Essentials, it is a Government-backed, industry-supported scheme to help organisations protect themselves against common online threats. As Cyber Essentials focuses on key technical controls, GDPR requires more than Cyber Essentials on its own. By attaining the IASME Governance Standard certification which includes the GDPR requirements, OPSWAT has demonstrated that it has a wider governance system for the management of the controls protecting personal data. The IASME governance standard adds a number of topics to Cyber Essentials which supports GDPR compliance. These include assessing business risks, training staff, dealing with incidents and handling operational issues.


GDPR General Data Protection Regulation is intended to protect all EU citizens from privacy and data breaches. OPSWAT is committed to GDPR and protects both EU and non-EU citizens by complying with all of the personal data rights and regulations that are mandated by GDPR.

Learn More

Good Software

Good Software is a Korean based software certification. OPSWAT has received the Good Software Certification based on testing and evaluation of OPSWAT products with established international standards including functionality, usability, efficiency, reliability, portability, maintainability, indication, and identification.