SOC 1 Bridge (Gap) Letter - Government Cloud Plus

To help customers fulfill financial reporting related requirements, Salesforce provides a SOC 1 Bridge letter - sometimes referred to as a Gap Letter or Comfort Letter - to provide assurance coverage over the difference in customer financial reporting periods and the currently available report period. It is only available for the SOC 1 Type II (SSAE 18) Report. Letters are signed and released at the end of June, September, March, December of each year. No other time periods are possible. This is the only letter that can be made available. Customer specific letters are not possible. Applicable only to the environment branded and sold as Government Cloud Plus.

For Federal Agencies:

1. Download and Complete the FedRAMP Package Access Request Form: Access the form here: https://www.fedramp.gov/assets/resources/documents/Agency_Package_Request_Form.pdf.
2. Submit the Completed Form: Email the completed form to the email address, package-access@fedramp.gov, shown on the form. You must have a .gov or .mil email address to access a FedRAMP Security Package.
3. Wait for Notification: Once the FedRAMP Program Management Office (PMO) reviews and processes your request, Salesforce will receive a notification.
4. Granting Access: Upon receiving the notification from the FedRAMP PMO, Salesforce will grant you access to the Public Sector Document Portal.

For State, Local, Quasi-Governmental Agencies and Implementation Partners:

1. Contact Your Account Executive: Reach out to your designated Account Executive to request access to the security documentation.
2. Granting Access: Once your access is reviewed and approved, Salesforce will grant you access to the Public Sector Document Portal.