The Citrix cloud resources are available around the world in up to 5 regions. Review the resource map below to understand the region coverage for a particular service.
Many organizations are required to validate that their computing environments meet corporate standards for security. Customers of the Citrix Cloud platform are able to run penetration testing against their environment but need to work with the Citrix team to ensure that they are not impacting any other customer. This section provides information on the requirements and how to coordinate the testing.
The person submitting this notification agrees that (1) any penetration testing will comply with the Citrix Cloud Customer Penetration Test requirements available on the Citrix Trust Center; and (2) they have authority to agree to these terms on behalf of the Customer.
This document describes the requirements (“Requirements”) for customers (“you”) to perform penetration tests against your Citrix Cloud services environments. These Requirements are designed to allow you to evaluate the security of your Citrix Cloud environment(s) while preventing harm to other customers or to Citrix, including associated infrastructure, computing environments and data.
All penetration tests must follow the Requirements. Use of Citrix Cloud services will continue to be subject to the terms of the agreement and terms under which you purchased the relevant service. Any violation of these Requirements or of the relevant service terms may result in suspension or termination of your services and legal action as set forth in your agreement. You are responsible for any damage to Citrix Cloud infrastructure (including networks, machines and data) and to any other customers caused by failure to abide by these Requirements or your Citrix Cloud services agreement.
Check the health status of Citrix cloud services in real time.
To learn about the Unified Citrix Cloud Operations team that is a 24x7 service organization with a goal of delivering high availability of Citrix cloud services, consult the Citrix Cloud Business Continuity Overview document.
The Citrix Cloud Services Data Protection Overview describes our data protection practices including controls to safeguard the data of our cloud services customers.
The following documents provide more detail regarding specific Citrix cloud services:
The Citrix Analytics - Data Governance page provides information regarding the collection, storage, and retention of logs by the Citrix Analytics service.
The Citrix Application Delivery Management Service – Data Governance Overview communicates the data collected and stored in cloud as part of the Citrix Application Delivery Management (ADM) service.
The Citrix Intelligent Traffic Management – Customer Content and Logs document provides information regarding the collection, storage, and retention of logs and other data generated in connection with the Citrix Intelligent Traffic Management (ITM) service and related products.
The Citrix Workspace Microapps Service – Customer Content and Log Handling document provides more detailed information about the Customer Content and Log data processed and stored as part of the Citrix Workspace Microapps service.
Review common questions and information on Citrix preferred security practices and controls.
The due diligence package provides transparency about our policies, practices and controls at Citrix to put your mind at ease.
The Services Security Exhibit describes the security controls implemented in connection with the performance of cloud services, technical support services or consulting services.