MongoDB is committed to working with our customers to ensure compliance with GDPR, which will come into effect May 25, 2018. The measures we are undertaking to achieve this include:
Ensuring appropriate controller-processor contractual terms are in place prior to GDPR effective date.
Maintaining MongoDB’s EU-U.S. Privacy Shield certifications and entering into Standard Contractual Clauses where appropriate to support international data transfers.
Maintaining the SOC 2 Type 1 security certification for MongoDB Atlas.
A commitment to follow any additional security and privacy measures required under GDPR.
To request a copy of MongoDB Atlas SOC2 report, or view additional information, see here https://www.mongodb.com/cloud/trust/compliance/soc
It may help you to review the following resources for additional information: