Compliance engineered for the Cloud
Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.
The “Salesforce Sub-Outsourcing Risk Management Overview" document outlines Salesforce's approach to managing risks associated with sub-outsourcing (which includes subcontracting and sub-processing), particularly in the context of evolving regulations. It details Salesforce's commitment to customer trust, regulatory compliance (especially EU regulations) and robust supplier management processes, including supplier onboarding, contractual arrangements, policies, and assessments. The document emphasizes Salesforce's security controls, external oversight, and resilience measures to protect Customer Data, ensuring a secure and compliant supply chain.
Latest version
Valid from 2025-06-01
Last updated on 2025-06-01