Salesforce ComplianceSalesforce / Trust
Compliance engineered for the Cloud
Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.

ISO Statement of Applicability - v3.2 (English)

ISO 27001 ISO 27001 Audience Studio and Data Studio Audience Studio and Data Studio B2B Commerce B2B Commerce B2C Commerce / Commerce Cloud B2C Commerce / Commerce Cloud Einstein Platform Einstein Platform Heroku Heroku LiveMessage, myTrailhead, Salesforce Anywhere, Quip, Philan. Cloud and Elevate LiveMessage, myTrailhead, Salesforce Anywhere, Quip, Philan. Cloud and Elevate Marketing Cloud Marketing Cloud Marketing Cloud Account Engagement Marketing Cloud Account Engagement MuleSoft MuleSoft Salesforce Government Cloud Salesforce Government Cloud Salesforce Government Cloud Plus Salesforce Government Cloud Plus Salesforce Services and Additional Services Salesforce Services and Additional Services Tableau Tableau

ISO 27017 provides guidance on the information security aspects of cloud computing, recommending the implementation of cloud-specific information security controls that supplement the guidance of the ISO 27002 and ISO 27001 standards. This code of practice provides additional information security controls implementation guidance specific to cloud service providers. The standard advises both cloud service customers and cloud service providers, with the primary guidance laid out side-by-side in each section.
Latest version
Valid through 2024-01-27
Last updated on 2023-02-07