Compliance & security
Audit-ready
from day one.
PeaSoup is fully aligned with the UK’s NCSC Cloud Security Principles. Get faster compliance sign-off, audit readiness, and the security assurance your organisation needs — backed by ISO 27001, Cyber Essentials Plus, and proven controls.
14/14
NCSC principles aligned
ISO 27001
Certified information security
Cyber Essentials
Plus certified security controls
NCSC Cloud Security Principles
The 14 principles every UK organisation should trust
The National Cyber Security Centre (part of GCHQ) developed 14 Cloud Security Principles to help organisations evaluate cloud providers and ensure security by design. PeaSoup aligns with all 14 — providing audit-ready infrastructure.1. Data in transit
Encryption during transmission across networks and the internet.
2. Asset protection
Resilient systems and data protection against loss or compromise.
3. Separation between consumers
Isolation of your data from other users' data and systems.
4. Governance framework
Organisational controls and accountability structures in place.
5. Operational security
Proper procedures for monitoring, incident response, and change management.
6. Personnel security
Vetting, training, and ongoing management of staff with access.
7. Secure development
Security built into software development, testing, and deployment.
8. Supply chain security
Assurance of third-party security practices and dependencies.
9. Secure consumer management
Controls for user provisioning, access management, and revocation.
10. Identity and authentication
Assurance of third-party security practices and dependencies.
11. External interface protection
Security of external-facing interfaces and API endpoints.
12. Service administration
Secure management of cloud services and administration interfaces.
13. Audit information provision
Logging and audit trail availability for compliance verification.
14. Secure use of the service
Customer responsibility for secure configuration and operations.
What's included
Your IaaS comes pre-configured
Everything you need in one offering. No surprise bills or hidden charges.
Why NCSC alignment matters
NCSC alignment fast-tracks your audit. Security is already proven — auditors have a framework to verify.
Customer trust
Organisations and regulators trust NCSC principles. Your customers know security is built in by design.
Audit readiness
All controls documented and proven. When auditors arrive, you're ready — no surprises.
PeaSoup security accreditations
Proven and certified
Beyond NCSC alignment — PeaSoup holds independent certifications that verify security controls are real and tested.ISO 27001
International information security management standard
Cyber Essentials Plus
UK government-backed cyber security assurance
G-Cloud supplier
Vetted by UK government for cloud services
VMware Carbon Committed
Sustainability and secure infrastructure partner
PeaSoup alignment document
Detailed compliance mapping
Our detailed compliance report maps PeaSoup’s controls to all 14 NCSC Cloud Security Principles. Use it for audits, compliance reviews, and procurement evaluations.NCSC Cloud Security Principles alignment report
Complete mapping of PeaSoup controls to all 14 NCSC principles. PDF, 8 pages.
Ready for audit-ready cloud?
Talk to our team about how PeaSoup’s NCSC alignment can accelerate your security and compliance journey. Whether you’re auditing a cloud provider or ensuring regulatory compliance, we have the controls, certifications, and documentation you need.