Trust Center

Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

At SoSafe, security isn’t just a priority, it’s fundamental to everything we do. As a security provider, we uphold the same high standards we help our customers achieve.

This Trust Portal offers up-to-date insights into our security and compliance posture, along with access to key documentation.

By taking a transparent approach to compliance, we not only strengthen our security but also protect our customers and reinforce trust across the entire supply chain.

Compliance

GDPR Logo
GDPR
ISO/IEC 27001 SoA Logo
ISO/IEC 27001 SoA
ISO/IEC 27001:2022 Logo
ISO/IEC 27001:2022
TISAX Logo
TISAX
EU CRA Logo
EU CRA
EU Data Act Logo
EU Data Act

Documents

REPORTSEU's Cyber Resilience Act (CRA)
REPORTSPenetration Test Attestation
REPORTSPenetration Test MSP Platform
REPORTSSecurity Whitepaper
COMPLIANCEEU CRA
COMPLIANCEEU Data Act
COMPLIANCEISO/IEC 27001 SoA
COMPLIANCEISO/IEC 27001:2022
SELF-ASSESSMENTSCAIQ
SELF-ASSESSMENTSCAIQ Lite
APP SECURITYApplication Penetration Testing
LEGALSubprocessors

Risk Profile

Data Access LevelRestricted
Impact LevelModerate
Critical DependenceNo
View more

Reports

Penetration Test Attestation
Penetration Test MSP Platform
Security Whitepaper
View more

Self-Assessments

CAIQ
CAIQ Lite
OneMore Secure

Legal

Subprocessors
Customer Audit Rights
Cyber Insurance
View more

Data Privacy

Cookies
Data Breach Notifications
Data Privacy Officer
View more

Data Security

Access Monitoring
Certificates of Destruction
Data Backups
View more

Access Control

Access to source code
Authentication
Bring Your Own Device (BYOD)
View more

Infrastructure

Status Monitoring
Amazon Web Services
BC/DR
View more

Network Security

Data Loss Prevention
Distributed Denial of Service Protection (Anti-DDoS)
Firewall
View more

App Security

Responsible Disclosure
Application Penetration Testing
Vulnerability & Patch Management

Corporate Security

Email Protection
Employee Training
Incident Response
View more

Endpoint Security

Anti-Malware
Disk Encryption
Endpoint Detection & Response
View more

Corporate & Social Responsibility inc ESG

Accessibility of our products
Environmental
Social responsibility
View more

Policies

Information Security Policy
Information Management System (IMS) Policy
Asset Management Policy
View more

Security Grades

CyberVadis
CyberVadis Third-Party Security Assessment
883
Qualys SSL Labs
Qualys SSL Labs
A+

Risk Management

Risk Assessments within SDLC
Risk Management Policy
Supply Chain Risk Management

Physical & Environment

Physical Access Security
Knowledge Base (FAQ)
  • Does SoSafe have a bug bounty program?
  • How do I report a vulnerability to SoSafe?
  • Is there an interface for distributing e-learning via another LMS?
  • Is it possible to import learning progress data from an external LMS (e.g. SuccessFactors) into the SoSafe platform?
View more
Trust Center Updates

Compliance, Certifications and Accreditations

Copy link
Compliance

Updated ISO 27001:2022 Certificate

New ISO/IEC 27001:2022 Certificate, valid until December 19, 2028, is uploaded to the SoSafe Trust Center.

SoSafe SE 2025 Penetration Test Attestation Letter has been added to the Trust Center.

SoSafe has completed the CyberVadis Third-Party Security Assessment, and the score is now live in our Trust Center.

If you think you may have discovered a vulnerability, please send us a note.
Report issue