Corporate email
A mailbox with protection from spam and viruses
Disk
Secure cloud storage for your files
Telemost
Video conferencing with no time limits.
Messenger
A business messaging service with chats and channels
Calendar
A convenient way to schedule meetings
Domain email address
Mailboxes with the name of a company or a website
Documents
An online text, presentation, and spreadsheet editor
Notes
A service for notes and planning
Tracker
A project management platform
Send
Templates and easy-to-understand statistics
For companies
For individuals
For institutions
Yandex 360 for Business security
We develop products according to industry standards, legislation, and secure-by-design principles.
Secure development
We adhere to the Secure Development Life Cycle (SDLC) approach, follow the Zero Trust principle, regularly conduct internal and external audits, and check services for compliance with industry requirements and standards.
Business continuity
Yandex 360 is a distributed, fault-tolerant system. We understand how to protect critical processes and quickly restore them in case of issues. We perform regular data backups and conduct employee training — all to ensure your work remains uninterrupted and your data stays secure.
Data center security
Yandex data centers are located in Russia, have strict access control protocols, and exchange data using the company's own secure communication channels.
Reducing risks for companies
Antivirus protection
A built-in antivirus program automatically scans all emails in Yandex Mail as well as files on Yandex Disk and in Yandex Messenger.
Protection against spam and phishing
The Spamooborona service in Yandex Mail processes millions of emails daily using ML technologies to recognize and filter out spam and phishing.
Security management tools
An administrator account in Yandex 360 provides a one-stop access to your organization's security settings.
Encryption
in transit
Each user is assigned a dedicated pair of encryption keys. Data is secured in transit using TLS.
Backups
Data backups are done daily — they are encrypted using the internal key management system and stored in different data centers across Russia.
Compliance with regulators
Yandex 360 products are developed in compliance with both national and international security standards.
Compliance with legislation and standards
Federal Law No. 152-FZ and Order No. 21 of the FSTEC (Federal Service for Technical and Export Control) of Russia
Mail, Disk, Calendar, Messenger, Documents, Telemost, Notes, Send, Tracker, Wiki, Forms
Software register
All core Yandex 360 for Business products
Certificate of conformity
ISO/IEC 27001
Mail, Disk, Messenger, Telemost, Calendar
Certificate of conformity
ISO/IEC 27001
Yandex ID authentication service
Security management tools
Integration with AD
Sync users and groups from your Active Directory with Yandex 360. Use SAML 2.0–based SSO to configure access to virtual office services through your access control system.
Security event logs
Admins of your organization have access to event audit logs and employees' actions in Yandex 360 services in case of incidents or information security threats.
Multi-factor authentication (MFA)
Yandex 360 supports additional authentication factors for domain accounts in organizations. Administrators granularly manage MFA settings.
Managing employee sessions
Admins can see what devices employees use to access Yandex 360 services and have the ability to terminate individual or all of their sessions.
Role-based admin access
Give your employees access only to those administrative functions in Yandex 360 for Business that they actually need for work.
FAQ
Where is the data stored when using Yandex 360 for Business?
The data of all organizations is stored in Yandex's own data centers in Russia. Information between them is exchanged only via internal communication channels. See Help to learn more.
Does Yandex 360 for Business comply with data protection requirements?
The virtual office fully complies with the requirements of the personal data protection legislation, operating in accordance with the Federal Law No. 152 and all regulations thereunder. For more information, visit Help.
What security tools are available in Yandex 360 for Business?
Your organization's administrators will have access to a comprehensive security toolkit, from SSO to audit logs and synchronization with Active Directory. Learn more about it in Help.
How does Yandex 360 for Business ensure data privacy?
Yandex protects data using the TLS protocol, follows its own cryptographic standards, regularly reviews all employee access rights, and more. You can find the detailed list in Help.
Do Yandex employees have access to client data?
Yandex grants access to the systems handling client data only to employees responsible for performing standard maintenance tasks that ensure uninterrupted work of its services.
All Yandex employees — including data center staff, administrators, and developers — accept the requirements of internal policies and regulations, and regularly take additional information security courses.
Does Yandex 360 use certified versions of data security and cryptographic protection tools?
We do not use certified versions of data security and cryptographic protection tools in the SaaS service. However, we meticulously test and assess the security measures in place to ensure their compliance with internal information security protocols employed at Yandex.
Does Yandex 360 have DDoS protection?
Yes, all Yandex 360 components have DDoS protection.
Do Yandex 360 products support the TLS protocols according to GOST?
Yandex 360 for Business products do not currently support GOST-compliant TLS protocols, but this support may be implemented in future versions.
How is the Yandex cloud protected?
Our cloud is protected by a multi-level security system. We use on-the-fly encryption, regularly check systems for vulnerabilities, and conduct internal and external audits. Yandex complies with Russian and international security standards, employing advanced technologies to protect client data from cyber threats and unauthorized access. Our data centers are equipped with access control systems featuring strict entry policies, and all servers are continuously monitored via video surveillance.
What security management tools do you offer for large organizations?
Yandex 360 for Business has a separate line-up of plans for large enterprises. Additional security management tools are available in the "Corporate + Security" and "Corporate Ultimate" plans. See Help to learn more about the plans.
How does Yandex handle requests from government agencies?
Yandex only reacts to requests from government agencies if they come through official channels and meet all formal requirements. In response to such requests, we provide only the necessary information. Requests that do not comply with the legislation or come through unofficial channels are not considered. Learn more on the website.