Compliance engineered for the Cloud

Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.

IRAP

The Infosec Registered Assessors Program (IRAP) provides a comprehensive process for the assessment of systems security against the security controls provided by the Australian Government Information Security Manual (ISM). The ISM, along with the IRAP program, are governed by the Australian Cyber Security Centre (ACSC), which forms part of the Australian Signals Directorate (ASD).

The ISM describes the security control mechanisms that cloud services providers require for providing services to the government. IRAP assessments involve independent ACSC endorsed IRAP assessors evaluating the implementation, appropriateness and effectiveness of a system’s security controls. The IRAP assessment outcomes are documented within IRAP security assessment reports. Government customers use these reports to evaluate the security of cloud services/systems, any associated risks; before authorizing a system’s suitability for usage inline with their risk appetite and specific security requirements.

Please note some of the reports below require a password to be opened. Customers are requested to contact their Salesforce Account team to request for the password to access these reports.

Applicable documents by service

Filter this list

Sort by Updated On
Name IRAP Assessment Report - Einstein Platform & Agentforce AU [PROTECTED]	Updated On 2025-06-27	Infrastructure Hyperforce	Services Agentforce & Einstein Platform
Name IRAP Assessment Report - Tableau Cloud on Hyperforce AU [PROTECTED]	Updated On 2025-05-28	Infrastructure AWS, Hyperforce	Services Tableau Cloud
Name ACSC Essential 8 report for Salesforce Services and Data Cloud on Hyperforce AU	Updated On 2024-10-29	Infrastructure Hyperforce	Services Salesforce Services (Hyperforce)
Name IRAP Assessment Report - Slack	Updated On 2024-10-09	Infrastructure AWS	Services Slack
Name IRAP Engagement letter - Slack	Updated On 2024-10-09	Infrastructure AWS	Services Slack
Name IRAP Assessment Report - Salesforce Services on Hyperforce AU [PROTECTED]	Updated On 2024-08-05	Infrastructure Hyperforce	Services Agentforce & Einstein Platform Salesforce Services (Hyperforce)
Name Mulesoft IRAP Assessment letter	Updated On 2024-07-11	Infrastructure AWS	Services MuleSoft
Name IRAP Assessment Report - Mulesoft	Updated On 2024-07-02	Infrastructure AWS	Services MuleSoft
Name IRAP Assessment Report - Salesforce Services on Japan DC	Updated On 2024-05-13	Infrastructure First party	Services Salesforce Services (First Party)
Name Data Cloud IRAP Cloud Security Assessment Letter	Updated On 2024-03-27	Infrastructure Hyperforce	Services Data Cloud
Name Marketing Cloud Engagement & MC Einstein IRAP Cloud Security Assessment Letter	Updated On 2024-03-27	Infrastructure Hyperforce	Services Marketing Cloud - Engagement (First Party) Marketing Cloud - Engagement (Hyperforce)
Name IRAP Assessment Report - Salesforce Data Cloud [PROTECTED]	Updated On 2024-03-14	Infrastructure Hyperforce	Services Data Cloud
Name IRAP Assessment Report - Marketing Cloud Engagement and MC Einstein [PROTECTED]	Updated On 2024-03-05	Infrastructure Hyperforce	Services Marketing Cloud - Engagement (First Party) Marketing Cloud - Engagement (Hyperforce)
Name Mulesoft ACSC Essential Eight Maturity report	Updated On 2023-08-31	Infrastructure AWS	Services MuleSoft
Name ACSC Essential Eight Maturity Report - Salesforce Services on AWS and Japan DC	Updated On 2023-07-30	Infrastructure First party, AWS	Services Salesforce Services (First Party) Salesforce Services (Hyperforce)
Name Salesforce Services AWS and Japan DC IRAP Addendum Letter March 2023	Updated On 2023-06-21	Infrastructure First party, AWS	Services Salesforce Services (First Party)
Name Mulesoft IRAP Addendum Letter June 2022	Updated On 2022-11-10	Infrastructure AWS	Services MuleSoft
Name IRAP Engagement Letter - Salesforce Services on AWS and Japan DC	Updated On 2022-08-17	Infrastructure First party, AWS	Services Salesforce Services (First Party)
Name Salesforce Services IRAP Customer Configuration Guide [PROTECTED]	Updated On 2022-06-05	Infrastructure Hyperforce	Services Salesforce Services (First Party) Salesforce Services (Hyperforce)
Name IRAP Engagement letter - Salesforce Services on Hyperforce AU [PROTECTED]	Updated On 2021-11-09	Infrastructure Hyperforce	Services Salesforce Services (Hyperforce)
Name IRAP Customer Configuration User Guide Health Check [Official]	Updated On 2020-08-04	Infrastructure First party, AWS	Services Salesforce Services (First Party) Salesforce Services (Hyperforce)
Name IRAP Customer Configuration User Guide [Official]	Updated On 2020-08-04	Infrastructure First party, AWS	Services Salesforce Services (First Party) Salesforce Services (Hyperforce)