Compliance engineered for the Cloud
Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.

LiveMessage, Sales Enablement, Quip and Salesforce.org Elevate

Applicable to the services branded as LiveMessage, Sales Enablement (formerly branded as myTrailhead), Quip and Salesforce.org Elevate.

Applicable documents by category

NameUpdated OnInfrastructureCategory
Vulnerability/Penetration Report Summary - Quip 2025-02-06 AWS External Security Assessments
ISO 9001:2015 - Salesforce, Inc. 2025-01-31 First party Other Reports and Certificates
Salesforce Enterprise Resilience/BCP Summary 2025-01-29 First party, AWS, Hyperforce Resilience, BCP & DR
Digital Operational Resilience Act (DORA) Frequently Asked Questions 2025-01-28 First party, AWS, Hyperforce Digital Operational Resilience Act (DORA)
Digital Operational Resilience Act (‘DORA’) Mapping 2025-01-28 First party, AWS, Hyperforce Digital Operational Resilience Act (DORA)
ISO Statement of Applicability (English) 2025-01-28 First party, AWS, Hyperforce ISO 27001
ISO Statement of Applicability (French) 2025-01-28 First party, AWS, Hyperforce ISO 27001
Salesforce Agentforce & Einstein Generative AI Security White Paper (EN) 2025-01-26 Hyperforce FAQ's and White Papers
Spain ENS High - Corporate Services 2025-01-21 First party Spain Esquema Nacional de Seguridad (ENS)
SOC 2 Report - Amazon Web Services (AWS) 2025-01-10 AWS, Hyperforce SOC 2
Salesforce Third Party Risk Management Overview 2025-01-02 First party, AWS, Hyperforce FAQ's and White Papers
Vulnerability Management and Response Plan Summary 2025-01-02 First party, AWS, Hyperforce FAQ's and White Papers
HDS Certificate 2024-12-20 First party, AWS, Hyperforce Other Reports and Certificates
ISO/IEC 27001:2022 Certificate 2024-12-20 First party, AWS, Hyperforce ISO 27001
ISO/IEC 27017:2015 Certificate 2024-12-20 First party, AWS, Hyperforce ISO 27017
ISO/IEC 27018:2019 Certificate 2024-12-20 First party, AWS, Hyperforce ISO 27018
NEN 7510-1:2017 Certificate 2024-12-20 First party, AWS, Hyperforce NEN 7510
SOC 1 Report - Amazon Web Services (AWS) 2024-12-13 AWS, Hyperforce SOC 1
SOC 1 Report - Corporate Services 2024-12-09 First party, AWS, Hyperforce SOC 1
SOC 2 Report - Corporate Services 2024-12-09 First party, AWS, Hyperforce SOC 2
Salesforce Secure Development Lifecycle Overview 2024-12-05 First party, AWS, Hyperforce FAQ's and White Papers
SOC 2 Report - OpenAI 2024-11-25 AWS, Hyperforce SOC 2
Vulnerability/Penetration Report Summary - OpenAI 2024-11-25 AWS External Security Assessments
Salesforce Security (Incident) Response Plan 2024-09-05 First party, AWS, Hyperforce FAQ's and White Papers
GDPR - Data Protection Impact Assessments & Salesforce Services 2024-08-14 First party, AWS, Hyperforce GDPR
UK Cyber Essentials Plus Certificate 2024-07-24 First party, AWS, Hyperforce Other Reports and Certificates
Vulnerability/Penetration Report Summary - Messaging (LiveMessage) 2024-07-12 AWS External Security Assessments
Salesforce EU Processor Binding Corporate Rules 2024-07-01 First party, AWS, Hyperforce Salesforce BCRs
Salesforce UK Processor Binding Corporate Rules 2024-07-01 First party, AWS, Hyperforce Salesforce BCRs
Salesforce Health & Safety Policy 2024-06-26 First party, AWS, Hyperforce, Azure, GCP Resilience, BCP & DR
SOC 2 Report - Quip 2024-06-18 AWS SOC 2
SOC 3 Report - Quip 2024-06-18 AWS SOC 3
ISO/IEC 27001/27017/27018 Certificate - Misc. Services 2024-04-15 AWS ISO 27001
Security Perspective on the Shared Responsibility Model 2023-07-24 First party, AWS, Hyperforce FAQ's and White Papers
Data Privacy Framework (DPF) Registration 2023-07-17 First party, AWS, Hyperforce U.S. Data Privacy Framework (DPF)
Salesforce Vulnerability Management Program Overview 2022-12-12 First party, AWS, Hyperforce FAQ's and White Papers
Salesforce Security (Incident) Response Plan (JP) 2022-10-04 First party, AWS, Hyperforce FAQ's and White Papers
Vulnerability/Penetration Report Summary - myTrailhead 2022-08-16 AWS External Security Assessments
Security Perspective on the Shared Responsibility Model (JP) 2022-08-02 First party, AWS, Hyperforce FAQ's and White Papers
Vulnerability/Penetration Report Summary - Trailhead GO (Andr./iOS) 2022-07-26 AWS External Security Assessments
Vulnerability/Penetration Report Summary - Philanthropy Cloud Mobile (Andr./iOS) 2022-04-27 AWS External Security Assessments
Vulnerability/Penetration Report Summary - Salesforce.org Philanthropy Cloud 2021-01-21 AWS External Security Assessments
International Transfers of EU Personal Data to Salesforce's Services FAQ 2020-07-16 First party, AWS, Hyperforce U.S. Data Privacy Framework (DPF)
APEC Processor Seal - Salesforce 2020-07-10 First party, Hyperforce APEC Certification for Processors and Controllers
CSA CAIQ - Quip 2019-06-18 AWS CSA STAR