Iron Mountain Compliance


Iron Mountain adheres to and proactively pursues best practice and relevant compliance and accreditations for offsite data storage and protection. We comply with multiple Australian and international industry standards recommendations and guidelines.

Iron Mountain adheres to:

  • Australian Standard AS/NZS ISO 31000 for Risk Management
  • Records Management Physical Storage Standard AS/NZS 1015:2011
  • Australian Standard AS/NZS 15489 which conforms to ISO 11799
  • National Archives Standard for the Storage of Commonwealth Records
  • Australian Standard for AS 3636.5 for the Data Storage and Transfer Media – Storage.

In addition Iron Mountain is audited to:

    • AS / NZS ISO/IEC 27001 and certificated to PCI DSS
    • ISO 9001:2008, audited against the 5 Ticks and certificated for Quality Management System

Iron Mountain has a Disaster Recovery Plan (DRP) and a Business Continuity Plan (BCP), both of which are regularly tested and updated.