Newsletter Blog Partner Programs Academy Contact us
Products
Compute Instances Managed Kubernetes DBaaS Object Storage Block Storage GPU Servers
All products
Marketplace
Pricing
Resources
Documentation API Integration Support
Changelog
Register
Products Compute Instances Managed Kubernetes DBaaS Object Storage Block Storage GPU Servers
All products
Marketplace
Pricing
Resources Documentation API Integration Support
What's new
SCF

Secure Control Framework

The Secure Control Framework (SCF) provides a unified, industry-leading foundation for security and privacy across all Exoscale services. With 32 security domains and more than 1,000 controls, the SCF addresses the complex challenges of today’s cloud and regulatory environments—supporting efficient compliance with global standards.
Access compliance center

What is the SCF?

The Secure Control Framework (SCF) is an open-source, risk- and control-based framework designed to streamline and unify security, privacy, and compliance requirements. SCF organizes controls into 32 domains, covering the full lifecycle of information and systems—from physical infrastructure to application security, privacy, and even business continuity. The SCF is structured around four core principles: Confidentiality, Integrity, Availability, and Safety (CIAS). It is not a certification or an attestation, but a living framework for implementing and maintaining strong, auditable controls mapped to many regulations and industry standards.

FAQ

What are the benefits of using the SCF?

The SCF enables organizations to: - Streamline and unify compliance with multiple security, privacy, and regulatory frameworks - Eliminate duplicated effort and reduce audit fatigue by aligning controls with dozens of standards - Ensure security, privacy, and compliance requirements are designed and managed across the whole organization—not just in silos - Enable a risk-based, data-centric approach to security, from physical to application layers - Simplify mapping and evidence collection for audits, certifications, and customer due diligence

Exoscale

Contact our Compliance Team

Have questions about the SCF, our control framework, or how we map to specific standards and regulations? Contact our Compliance Team—we’re here to help you meet your security and compliance requirements.