B2C Commerce / Commerce Cloud (First Party)

Applicable to the services branded as B2C Commerce/Commerce Cloud on First Party Data Centers

Please refer to the "Audits and Certifications" section of the service-specific Security, Privacy and Architecture documentation for details regarding the security and privacy related audits and certifications received.

Related documents

Documents associated with this service

Name	Updated On	Infrastructure	Category
SOC 1 Report - Commerce Cloud	2026-06-05	First party Hyperforce	SOC 1
SOC 2 Report - Commerce Cloud	2026-06-05	First party AWS Hyperforce	SOC 2
SOC 3 Report - Commerce Cloud	2026-06-05	First party Hyperforce	SOC 3
Salesforce EU Processor Binding Corporate Rules	2026-05-06	First party AWS Hyperforce	Salesforce BCRs
Salesforce UK Processor Binding Corporate Rules	2026-05-06	First party AWS Hyperforce	Salesforce BCRs
Salesforce Secure Development Lifecycle Overview (JP)	2026-05-01	First party AWS Hyperforce	FAQ's and White Papers
SOC 1 Bridge (Gap) Letter - Commerce Cloud	2026-04-03	First party Hyperforce	SOC 1
Salesforce Distributed Denial of Service (DDoS) Risk Mitigation Overview (JP)	2026-03-23	First party AWS Hyperforce	FAQ's and White Papers
Salesforce Post-Quantum Cryptography	2026-03-18	First party AWS	FAQ's and White Papers
Salesforce Distributed Denial of Service (DDoS) Risk Mitigation Overview (EN)	2026-03-11	First party AWS	FAQ's and White Papers