What is the HAVEN Standard?
HAVEN stands for Hosting & Applications Secure And Standard-Compliant. It is a framework developed by Logius for the use of public cloud services by the Dutch government.
The standard provides a structured approach for assessing and selecting cloud services, with specific attention to information security, privacy, and continuity. HAVEN helps government organizations make responsible use of cloud services.
Our HAVEN Compliance
Proxy Managed Services B.V. meets the requirements of the HAVEN standard for public cloud services. This means government organizations can use our platform for hosting applications and data, provided they perform proper classification and risk analysis.
We support government organizations in making responsible cloud hosting choices by providing transparency about our security measures, data locations, and compliance status.
HAVEN Compliance in Practice
Data Sovereignty
Choice of Dutch or EU datacenters with guarantees about data location and jurisdiction.
Transparency
Complete openness about security measures, subprocessors, and data flows.
Portability
Ability to easily migrate data and applications (no vendor lock-in).
Auditability
Extensive logging and audit capability for government organizations.
Security Measures According to BIO
HAVEN refers to the Baseline Information Security Government (BIO). We implement the following BIO measures:
- Access control with multi-factor authentication
- Encryption of data at rest and in transit
- Logging and monitoring according to BIO guidelines
- Incident response procedures
- Regular security assessments
- Controlled access to production environments
- Backup and disaster recovery according to BIO
- Personal data minimization
Suitable For
Our platform is suitable for government organizations that:
- Want to use modern cloud solutions within the HAVEN framework
- Want to host data within the Netherlands or EU
- Value transparency and auditability
- Don't want vendor lock-in
- Need BIO-compliant infrastructure
Note: Government organizations are responsible for classifying their data and conducting risk analysis according to HAVEN. We support this with documentation and transparency.
Supported Classification Levels
Our platform is suitable for the following BIV classifications (Availability, Integrity, Confidentiality):
- Basic: For non-confidential government information
- High: For departmentally confidential information (with additional measures)
For state secret or highly confidential information, we advise contacting us for a specific assessment.