Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.
ISO 27001
The International Organization for Standardization 27001 Standard (ISO 27001) is an information security standard that ensures office sites, development centers, support centers and data centers are securely managed. These certifications run for 3 years (renewal audits) and have annual touch point audits (surveillance audits).
Applicable documents by service
Salesforce Services and Additional Services
B2C Commerce / Commerce Cloud
Salesforce Services and Additional Services
B2C Commerce / Commerce Cloud
Marketing Cloud
Audience Studio and Data Studio
Heroku
MuleSoft
Tableau
Pardot
Vlocity
Einstein Platform
B2B Commerce
LiveMessage, myTrailhead, Salesforce Anywhere, Quip, Philan. Cloud and Elevate
ClickSoftware
Customer 360 Data Manager
Salesforce CDP
Salesforce Government Cloud
Salesforce Government Cloud Plus
Salesforce Services and Additional Services
B2C Commerce / Commerce Cloud
Salesforce Services and Additional Services
B2C Commerce / Commerce Cloud
Marketing Cloud
Audience Studio and Data Studio
Heroku
MuleSoft
Pardot
Einstein Platform
B2B Commerce
LiveMessage, myTrailhead, Salesforce Anywhere, Quip, Philan. Cloud and Elevate
Salesforce Government Cloud
Salesforce Government Cloud Plus
Salesforce Services and Additional Services
B2C Commerce / Commerce Cloud
Salesforce Services and Additional Services
B2C Commerce / Commerce Cloud
Marketing Cloud
Audience Studio and Data Studio
Heroku
MuleSoft
Tableau
Pardot
Vlocity
Einstein Platform
B2B Commerce
LiveMessage, myTrailhead, Salesforce Anywhere, Quip, Philan. Cloud and Elevate
Customer 360 Data Manager
Salesforce CDP
Salesforce Government Cloud
Salesforce Government Cloud Plus
Marketing Cloud
LiveMessage, myTrailhead, Salesforce Anywhere, Quip, Philan. Cloud and Elevate
Marketing Cloud
LiveMessage, myTrailhead, Salesforce Anywhere, Quip, Philan. Cloud and Elevate
Slack
Slack
Additional Information
Trailhead
Security Basics Educate your users, protect your Salesforce org, and encourage a culture of security.
European Union Privacy Law Basics Learn about the General Data Protection Regulation (GDPR) and how to comply.
Develop Secure Web Apps Detect and prevent common vulnerabilities in your code and strengthen your web apps.
Source:
https://compliance.salesforce.com/en/iso-27001