Compliance engineered for the Cloud

Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.

Vulnerability Management and Response Plan Summary

FAQ's and White Papers Audience Studio and Data Studio B2B Commerce B2C Commerce / Commerce Cloud Customer Data Cloud Einstein Platform Heroku LiveMessage, Sales Enablement, Quip and Salesforce.org Elevate Marketing Cloud Marketing Cloud - Account Engagement MuleSoft MuleSoft Government Cloud Salesforce Government Cloud Plus Salesforce Professional Services Salesforce Services, Sales Cloud, Service Cloud and Industries Tableau

This document serves as the public version of the Salesforce Vulnerability Management and Response plan, which is part of our overall vulnerability management program. The plan applies to all security vulnerabilities that occur across Salesforce services and within Salesforce developed products. Salesforce defines a security vulnerability as any unintended capability within our product offerings and services that can adversely affect the confidentiality, integrity, or availability of any Salesforce computing service or the data of our customers.

Latest version

Valid from 2025-01-02

Last updated on 2025-01-02