Maximum certified standards of
reliability, security and care for the environment

Ultra-redundant
systems

Above-standard
security

Respect for
the environment

Maximum
resilience

The data centers in Arezzo (IT1) and Milan PSP (IT3) respect the highest levels of resilience set by ANSI/TIA-942 Rating 4 (formerly Tier 4)

Rating 4 (formerly Tier 4) is the highest level outlined by ANSI/TIA-942 and classifies a data center as an infrastructure capable of avoiding interruption of services even in the event of serious failures, thanks to the installations' high levels of redundancy.

A Rating 4 (formerly Tier 4) data center has redundant components constantly in operation, as well as multiple supply routes and hardware cooling systems.

The data center is equipped to withstand a failure in any part of the installation without causing downtime and is protected against physical events, including natural catastrophes (e.g. fire, flood, earthquake, etc.).

A data center can be compliant with Rating 4 standard (formerly Tier 4) for its design also in the development phase (Design Validation). Once in operation, the data center will be subjected to an inspection by ANSI/TIA to verify the Rating 4 (formerly Tier 4) construction, As Built Validation.

ANSI/TIA-942 is one of the main standards of reference worldwide for the validation of the quality of the infrastructure and the guarantee of service continuity in a data center. TIA-942 is the only standard of reference and classification adopted by AGID (Agency for Digital Italy) for the classification of the data centers of Italy's Public Administration.

Find out more about certification

Arezzo Data Center (IT1) – View document
Milan Data Center PSP (IT3) – View document

Aruba Data Centers: Bureau Veritas Certifications

USING GREEN ENERGY, COMMITMENT TO CNDCP PRINCIPLES AND ENERGY EFFICIENCY COC

Aruba produces clean energy from private hydroelectric plants and photovoltaic systems that cover the walls and roofs of the data centers.
Find out more about our energy production

Our facilities are powered exclusively by 100% green energy purchased from renewable sources with Guaranteed Certificate of Origin (GO).
See certification

Aruba Data Centers are fully compliant with PUE and WUE procedures and calculation methods, thanks to which Aruba has already reached the Climate Neutral Data Center Pact (CNDCP) targets for 2030.
See certification

The Bergamo data centers (DC-A, DC-B and DC-C) are compliant with 2023 Best Practice Guidelines for the EU Code of Conduct on Data Center Energy Efficiency.
See certification

Aruba Data Centers: Eco-friendly and Green Power

All Aruba data centers are certified

ISO 27001

Maximum security
of information

The purpose of ISO 27001:2013 certification is to ensure compliance with certain security standards in the management of company data and information, preserving its integrity, confidentiality and availability.

Using an Information Security Management System (ISMS) enables us to guarantee our customers the use of secure processes and applications in terms of confidentiality, integrity and authenticity, in order to reduce the possibility of external threats or data loss.

Arezzo Data Center (IT1) – View
Arezzo Data Center (IT2) – View
Milan Data Center PSP (IT3) – View
Czech Rep. Data Center (CZ1) – View

ISO 9001

Quality of our
organization

The purpose of ISO 9001:2015 certification is to improve a company's organizational management, by using resources, procedures and instructions inspired by the principles of simplification, efficiency and efficacy.

The organization of internal processes, adopted with the Certified Quality System (CQS), enables us to offer our customers a more efficient and competitive service, truly demonstrating the quality of our services, designed, created and provided with a view to continuous improvement.

Arezzo Data Center (IT1) – View
Arezzo Data Center (IT2) – View
Milan Data Center PSP (IT3) – View
Czech Rep. Data Center (CZ1) – View

ISO 14001

Certified environmental
management

Thanks to its ISO 14001:2015 certification, Aruba can guarantee that all key environmental aspects relating to its activities and services have been identified.

This same digitization process in which we play an active role is an important driving force behind protecting the environment.

We have chosen to adopt an Environmental Management System (EMS), making a daily commitment to comply with the criteria laid down by the regulations.

We go one step beyond mere compliance to guarantee to our customers that we are constantly striving to pursue ambitious, shared sustainability targets.

Milan Data Center PSP (IT3) - View

ISO 50001

Energy management
system

ISO 50001 relates to the application of management strategies whose aim is to boost energy efficiency via useful methodologies for controlling energy use and consumption. This confirms our intention to use energy in an informed way, by optimizing the use of energy resources and adopting a sustained approach, which is then translated into economic benefits for our organization and our customers.

Arezzo Data Center (IT1) – View
Arezzo Data Center (IT2) – View
Milan Data Center PSP (IT3) – View

ISO 22237

Data centre facilities
and infrastructures

The ISO 22237 series, entitled "Data Center facilities and infrastructures" is recognised as the international benchmark standard for the entire life cycle of a data center, from strategic conception to building and operation, in line with ANSI/TIA 942 (US standard) and EN 50600 (European standard) regulations. ISO 22237 is based on an analysis of the requirements relating to issues covered in the following 7 areas: general concepts (part 1); building construction (part 2); power distribution (part 3); environmental control (part 4); telecommunications cabling infrastructure (part 5); security systems (part 6); Management and operational information (part 7).

Data Center Milano PSP (IT3) – View

ISO 20000-1

IT service
management system

ISO 20000-1 standard represents a reference tool for the organization of IT services, aimed at improving their provision and usage. Its objective is to ensure the highest quality of services provided at the best possible cost.

Arezzo Data Center (IT1) – View
Arezzo Data Center (IT2) – View
Milan Data Center PSP (IT3) – View

ISO 22301

Business continuity
management system

ISO 22301 is an international standard for management of business continuity, defining the necessary requirements for planning, establishing, implementing and running a documented management system. It also monitors, maintains and continuously improves the management system to protect against, reduce the risk of disruptive incidents, and restore operations should these arise.

Arezzo Data Center (IT1) – View
Arezzo Data Center (IT2) – View
Milan Data Center PSP (IT3) – View

Declaration of compliance

ISO/IEC 27018

The ISO/IEC 27018 standard is an extension of the ISO 27001 standard which specifically relates to the management of personal data in relation to IaaS, PaaS and SaaS Cloud solutions. The management of personal data processed within our Cloud services is certified as being compliant with this international standard in terms of its technical, organizational and contractual aspects.

See the list our compliant Cloud services and Data Centers
Services
  • Cloud Monitoring
  • Cloud Domain Center
  • Virtual Private Cloud
  • Cloud Backup
  • Cloud Load Balancing
  • Cloud Computing (VPS/PRO)
  • Cloud Bare Metal Backup
  • Cloud Object Storage
  • IaaS per SAP Hana
  • Aruba PA email
  • Disaster Recovery as a Service
  • Database as a Service
  • Dedicated servers
  • Aruba Managed Hybrid Cloud (OpenShift)
  • Hosted Private Cloud
  • Unified Storage
  • Doc Fly - Substitutive Conservation
  • Digital, remote and automatic signature services
Data Center
  • IT1 - Arezzo - Italy
  • IT2 - Arezzo - Italy
  • IT3 - Milan PSP - Italy
Declaration of compliance

ISO/IEC 27017

The ISO/IEC 27017 standard defines additional, reinforced security controls to address the security measures implemented by Cloud service providers. It is therefore certified that these controls have been integrated into our Information Management system.

See the list our compliant Cloud services and Data Centers
Services
  • Cloud Monitoring
  • Cloud Domain Center
  • Virtual Private Cloud
  • Cloud Backup
  • Cloud Load Balancing
  • Cloud Computing (VPS/PRO)
  • Cloud Bare Metal Backup
  • Cloud Object Storage
  • IaaS per SAP Hana
  • Aruba PA email
  • Disaster Recovery as a Service
  • Database as a Service
  • Dedicated servers
  • Aruba Managed Hybrid Cloud (OpenShift)
  • Hosted Private Cloud
  • Unified Storage
  • Doc Fly - Substitutive Conservation
  • Digital, remote and automatic signature services
Data Center
  • IT1 - Arezzo - Italy
  • IT2 - Arezzo - Italy
  • IT3 - Milan PSP - Italy
Declaration of compliance

ISO/IEC 27035

The ISO 27035 guidelines are used to make sure that procedures for responding to security incidents and events are in line with the latest standards. With the implementation of ISO 27035, solutions have been put in place to respond to incidents promptly, communicate appropriately both internally and externally, and furthermore to learn from any vulnerabilities, thus improving the general approach to managing incidents.

See the list our compliant Cloud services and Data Centers

Extract from the Quality, Environment, Energy and Information Security Policy

Continuing to assess risks and opportunities thoroughly is a key part of Aruba's corporate culture. Every day, we take on responsibility for protecting and making the most of all our resources:

  • our customers and the trust that they place in us;
  • our information assets, with data centers certified at the highest levels;
  • our professionals, who boast technical and cross-disciplinary knowledge;
  • our environmental and energy resources, assets that belong to all the countries in which we work.

We are committed to developing an Information Security culture as one of our shared values to inspire our day-to-day activities. We do this in accordance with measures designed to guarantee the confidentiality, integrity and availability of the information we store and transmit, depending on how critical and sensitive they are, and on their value.

This means that day after day, we can increase the trust of customers, suppliers and the community in general, along with our ability to manage processes in a controlled way.

We are dedicated to fulfilling our obligations in terms of compliance, by optimizing and mitigating the use of non-renewable environmental resources, and by favouring renewable energy sources and solutions that are more energy efficient.

Read the objectives of our policies

With reference to standards: ISO 9001 / ISO 27001 / ISO 27017 / ISO 27018 / EN 319 401 / ISO 27035 / ISO 45001 / ISO 14001 / ISO 50001

Ongoing and widespread assessment of risks and opportunities is a key part of Aruba's corporate culture. Every day, we undertake to protect and make the most of all our resourcesb>:

  • our customers and the trust that they place in us;
  • our information assets, with data centers certified at the highest levels;
  • our professionals, who boast technical and cross-disciplinary knowledge;
  • our environmental and energy resources, assets of all the countries in which we work.

This enables us to increase, day by day, the confidence of customers, workers, suppliers and the community in Aruba and in our ability to manage processes in a controlled way.

We are constantly striving to

  • make sure that our Management Systems comply with international benchmark standards;
  • fully comply with industry standards;
  • promote, share and pursue the principle of continuous improvement;
  • effectively prevent and resolve instances of non-compliance;
  • review the adequacy and effectiveness of our management systems to measure them;
  • encourage the development of in-house professional skills through training and coaching;
  • share and promote our company's goals and values with partners and third parties.

In our everyday work, we focus on specific objectives in each of the three areas that are critical to us:

The quality of our services

  • Guaranteeing the punctuality, accuracy and responsiveness of the service provided.
  • Promptly evaluating external information so that the service being delivered can always be improved.
  • Improving the efficiency, long-term repeatability and reliability of all processes, mainly by using written, and therefore definite, procedures.
  • Securing and maintaining a competitive advantage over our competitors in terms of saleability of the service and our market penetration – helped by excellent value for money – with a knock-on increase in profitability.
  • Constantly striving to meet the demands and expectations of customers/the market; these must be identified as clearly and quickly as possible, whether in writing, verbally or implied.

Data protection and privacy

  • Providing data subjects with the information needed to exercise their rights with regard to processing personal data, as stipulated by current regulations.
  • Implementing adequate technical and organizational measures to ensure that by default, only personal data required for each specific purpose is in fact processed.
  • Guaranteeing the availability of information and services, including by means of specific business continuity plans.
  • Ensure the confidentiality, integrity and availability of the data being processed.
  • Preventing the modification or loss of data.
  • Drawing up procedures for identifying and managing incidents (incident handling, data breaches) in order to respond to any potential emergencies or incidents quickly, effectively and carefully.

Respect for the environment and energy resources, for the health and safety of workers

  • Choosing the best technological solutions every time in terms of energy and environmental impact.
  • Careful and rational use of water and energy resources.
  • Promoting the recycling and recovery of the waste we produce whenever possible.
  • Moving towards alternative energy sources with a low environmental impact, reducing dependency on the use of fossil fuels, wherever possible.
  • Managing sites responsibly by carrying out our activities with a commitment to protecting the health and safety of workers and the environment.
  • Guaranteeing an efficient response to emergencies.
  • Adopting technical and administrative measures to prevent workplace illnesses and accidents, by investing in eliminating hazards at source.
*Certification process underway

Contact us or book a visit

You can visit our data centers in Italy and the Czech Republic.

Come and see our infrastructures for yourself, or ask for more information.

CONTACT US BOOK A VISIT
Rating 4 (formerly Tier 4)

The term ‘Tier’ was used for the ANSI/TIA-942 standard until the March 2014 version. In the March 2014 version, the term ‘Tier’ was replaced by ‘Rating’.