WEBINARHow to build smarter AI apps with Python and MongoDB. Register now >
NEWHow to build smarter AI apps with Python and MongoDB. Register now >
Image of Certificacion de Conformidad Con EL ENS

Back to Trust CenterEsquema Nacional de Seguridad High (ENS)

Spain’s Esquema Nacional de Seguridad (ENS), regulated by Royal Decree 311/2022, establishes a rigorous framework of security principles and requirements to ensure the adequate protection of information processed by the Spanish Public Sector and its technology providers. The ENS aims to guarantee the confidentiality, integrity, availability, authenticity, and traceability of data and services used electronically. As a mandatory requirement for entities collaborating with Spanish public administrations, the ENS ensures that cloud services meet a uniform set of high-level cybersecurity standards.

MongoDB Atlas has achieved the ENS High (Nivel Alto) certification, the most demanding category within the framework, reserved for systems that manage highly sensitive data or support critical services. This certification was granted following an independent third-party audit that verified MongoDB’s adherence to the comprehensive security measures and controls mandated by the Spanish National Cryptologic Centre (CCN). By achieving the "High" designation, MongoDB Atlas demonstrates its readiness to support the most sensitive digital transformation projects across Spain’s government agencies and public organizations. MongoDB can be found as an approved vendor on the ENS Certificados pages. View ENS compliance documentation in MongoDB’s Customer Trust Portal.

FAQ

What is the ENS High certification?

The Esquema Nacional de Seguridad (ENS), or National Security Framework, was developed by the Spanish Ministry of Finance and Public Administration and the National Cryptologic Centre (CCN). It consists of basic principles and minimum requirements necessary for the protection of information in the Spanish Public Sector. The High (Alto) level is the most stringent tier, requiring a rigorous independent audit to ensure the service can handle highly sensitive data and support critical public systems.

Why is ENS High important to MongoDB customers?

For Spanish government agencies and private organizations providing services to the Spanish Public Sector, ENS compliance is often a legal requirement. Because MongoDB Atlas has achieved the ENS High certification, customers can store and manage data that requires the highest level of security, confidentiality, and availability while remaining compliant with Royal Decree 311/2022.

What MongoDB products and services are in the scope of this certification?

The ENS High certification covers MongoDB Atlas hosted on qualified cloud infrastructure. This allows customers to leverage the security controls of both MongoDB and the underlying cloud provider to meet Spanish national standards.

Are MongoDB Cloud Services hosting providers ENS certified?

Yes. MongoDB Atlas is hosted on Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure, all of which have achieved ENS High certification. This ensures that the entire stack—from the physical data centers to the database service layer—meets the security requirements set forth by the Spanish authorities.

Who performed the independent third-party audit of MongoDB for ENS?

MongoDB was audited by an accredited independent assessor specialized in the ENS framework to verify that our controls and processes meet the specific requirements for the High category.

Can my organization be ENS certified by association?

No. While using an ENS High certified service like MongoDB Atlas significantly simplifies your path to compliance, organizations are not automatically certified by association. Each entity is responsible for its own ENS adequacy plan and for evaluating its specific implementation under the Shared Responsibility Model. Customers can, however, leverage MongoDB’s ENS certification as evidence of security for the data management layer of their systems

Where can I get a copy of MongoDB’s ENS High Certification?

The MongoDB Certificado De Conformidad Con El Esquema Nacional De Seguridad (ENS) is available upon request. Existing customers can request documentation here. Prospective customers, please contact us.

This page is for informational purposes only, and MongoDB does not intend the information or recommendations presented here to constitute legal advice. Each customer is responsible for independently evaluating its own particular use of MongoDB's services as appropriate to support its legal and compliance obligations.

View our other compliance offerings

GDPR →
FedRAMP® →
HIPAA →

Ready to get started?

Launch a new app or migrate to MongoDB Atlas with zero downtime
Start with 512MB FreeContact