You appear to be using an unsupported browser, and it may not be able to display this site properly. You may wish to upgrade your browser.

We use cookies to collect anonymous data to help us improve your site browsing experience.

Click 'Accept all cookies' to agree to all cookies that collect anonymous data. To only allow the cookies that make the site work, click 'Use essential cookies only.' Visit 'Set cookie preferences' to control specific cookies.

Set cookie preferences

Your cookie preferences have been saved. You can change your cookie settings at any time.

Features of the cloud platform

On the cloud platform you’ll get the following features for:

  • customer environment set up
  • security
  • infrastructure

Customer environment set up

Including:

  • role based access control to manage your workloads
  • support and guidance to onboard to the platform
  • guidance on architecture best practices and standards to follow
  • bootstrapped accounts with controls and security available as requested
  • cost management features

Security

Including:

  • facilitating access to a cloud security operations centre to share log files
  • secure storage of identities for a single sign on to the platform
  • multi-factor authentication for the platform
  • conditional access based on network location
  • firewall and DDoS protection
  • access to cloud provider security compliance tools to scan your workloads

Security standards and bodies the cloud platform aligns with

The cloud platform aligns with the following security standards and bodies:

  • Cloud Service Alliance Security, Trust & Assurance Registry (CSA STAR)
  • Cloud security Cloud Controls Matrix (CCM)
  • National Cyber Security Centre Cloud Security Principles (NCSC CSP)
  • ISO/IEC 27001:2013 security techniques and ISO/IEC 27002:2013 security controls
  • Open Web Application Security Project (OWASP)
  • Centre for Internet Security (CIS)
  • National Cyber Security Centre Cyber Assessment Framework (NCSC CAF)

Infrastructure

You can use most Amazon Web Services or Microsoft Azure infrastructure features. There are some exceptions to this. If you need to know more, email cloud-platform@gov.scot.

Using supported regions

Amazon Web Services regions

You can use the following European regions:

  • Ireland
  • Frankfurt
  • London
  • Paris
  • Stockholm
  • Milan
  • Zurich
  • Spain

Microsoft Azure regions
We recommend you use the  UK South and UK West regions. However, can also use the following European regions:

  • Switzerland central
  • Sweden central
  • Spain central
  • Poland central
  • Norway central
  • Italy central
  • Greece central
  • Germany West central
  • France central
  • North Europe
  • West Europe
  • Denmark East
  • Belgium central
  • Austria East

You're expected to use these regions to process, manage or store data.

All regions the cloud platform supports follow GDPR. 


Using regions that are not supported

If you want to use a region that the cloud platform service team does not support, you'll need to agree this. You can do this by emailing cloud-platform@gov.scot.

To agree this, you'll need to:

  • write a business case
  • carry out a data protection impact assessment 

The cloud platform does not provide services within these regions. 

Back to top