Trusted Information Security Assessment Exchange (TISAX)

This page describes TISAX compliance controls in Azure Databricks.

TISAX overview

TISAX (Trusted Information Security Assessment Exchange) is an information security assessment and exchange mechanism defined by the ENX Association on behalf of the German Association of the Automotive Industry (VDA). It standardizes how organizations in the automotive sector assess and share information security compliance, based on ISO/IEC 27001 and VDA ISA (Information Security Assessment) requirements.

Key points

  • Developed for the automotive industry to ensure consistent information security assessments and trust between partners.
  • Based on ISO/IEC 27001 with additional automotive-specific security and data protection requirements.
  • Requires assessment by an accredited TISAX audit provider.
  • Certification results are shared via the TISAX online platform managed by ENX.

Enable TISAX compliance controls

To configure your workspace to support processing of data regulated by the TISAX standard, the workspace must have the compliance security profile enabled. Only specific preview features are supported for processing regulated data. For details on the compliance security profile, supported preview features, and supported regions, see Compliance security profile.

You are solely responsible for verifying that sensitive information is never entered in customer-defined input fields, such as workspace names, compute resource names, tags, job names, job run names, network names, credential names, storage account names, and Git repository IDs or URLs. These fields might be stored, processed, or accessed outside the compliance boundary.

To enable TISAX compliance controls, see Configure enhanced security and compliance settings.

Regional support for features

This table shows feature availability for the selected compliance standard across all supported Databricks regions. Some features may be listed as available before they are actually released.

Feature australiacentral australiacentral2 australiaeast australiasoutheast brazilsouth canadacentral canadaeast centralindia centralus eastasia eastus eastus2 eastus2euap francecentral germanywestcentral japaneast japanwest koreacentral mexicocentral northcentralus northeurope norwayeast qatarcentral southafricanorth southcentralus southeastasia southindia swedencentral switzerlandnorth switzerlandwest uaenorth uksouth ukwest westcentralus westeurope westindia westus westus2 westus3
AI Functions - Classification
AI Functions - Document Parsing
AI Functions - Information Extraction
Anomaly Detection
Classic Compute
Clean Rooms
Data Classification
Databricks Apps
Databricks One
Default Storage
Genie Agent Mode
Genie Code
Genie Code Agent Mode
Genie Code Dashboard Agent
Genie Spaces
Knowledge Assistant
Lakebase Autoscaling
Lakeflow Connect - Confluence
Lakeflow Connect - Dynamics 365
Lakeflow Connect - GA4
Lakeflow Connect - Google Ads
Lakeflow Connect - HubSpot
Lakeflow Connect - Meta Ads
Lakeflow Connect - MySQL
Lakeflow Connect - NetSuite
Lakeflow Connect - PostgreSQL
Lakeflow Connect - SFTP
Lakeflow Connect - Salesforce
Lakeflow Connect - ServiceNow
Lakeflow Connect - SharePoint
Lakeflow Connect - TikTok Ads
Lakeflow Connect - Workday HCM
Lakeflow Connect - Workday Reports (RaaS)
Lakeflow Connect - Zendesk Support
Lakeflow Connect - Zerobus Ingest
Lakeflow Jobs
Lakeflow Pipelines Editor
Lakehouse Monitoring
MLflow on Databricks
Managed MCP Servers
Model Serving - AI Gateway
Model Serving - AI Guardrail
Model Serving - AI Playground
Model Serving - Custom Models
Model Serving - External Models
Model Serving - Foundation Models AI Function (ai_query)
Model Serving - Foundation Models Pay-Per-Token
Predictive Optimization
Serverless Jobs/Workflows/Notebooks
Serverless Lakeflow Pipelines
Serverless SQL warehouses
Serverless Workspace
Supervisor Agent
Vector Search (Standard)
Vector Search (Storage Optimized)
  • Last updated on