Compliance engineered for the Cloud

Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.

MuleSoft

Applicable to the services branded as MuleSoft or the Anypoint Platform (MuleSoft Services).

Some specific certifications and reports may not apply to all services in the above list. Please refer to the "Audits and Certifications" section of the "Salesforce Security, Privacy and Architecture" document for any limitations.

Applicable documents by category

Filter this list

Sort by Updated On
Name Salesforce EU Processor Binding Corporate Rules	Updated On 2024-04-02	Infrastructure First party, AWS, Hyperforce	Category Salesforce BCRs
Name Salesforce UK Processor Binding Corporate Rules	Updated On 2024-04-02	Infrastructure First party, AWS, Hyperforce	Category Salesforce BCRs
Name SOC 1 Bridge (Gap) Letter - Mulesoft	Updated On 2024-04-02	Infrastructure AWS	Category SOC 1
Name ISO Statement of Applicability - v3.4 (EN)	Updated On 2024-02-15	Infrastructure First party, AWS, Hyperforce	Category ISO 27001
Name ISO Statement of Applicability - V3.4 (FR)	Updated On 2024-02-15	Infrastructure First party, AWS, Hyperforce	Category ISO 27001
Name NEN 7510-1:2017 Certificate	Updated On 2024-01-29	Infrastructure First party, AWS, Hyperforce	Category NEN 7510
Name HDS Certificate	Updated On 2024-01-26	Infrastructure First party, AWS, Hyperforce	Category HDS
Name ISO 27001:2013 Certificate	Updated On 2024-01-26	Infrastructure First party, AWS, Hyperforce	Category ISO 27001
Name ISO 27017:2015 Certificate	Updated On 2024-01-26	Infrastructure First party, AWS, Hyperforce	Category ISO 27017
Name ISO 27018:2019 Certificate	Updated On 2024-01-26	Infrastructure First party, AWS, Hyperforce	Category ISO 27018
Name PCI Attestation of Compliance (AoC) - MuleSoft	Updated On 2024-01-02	Infrastructure AWS	Category PCI DSS
Name SOC 1 Report - MuleSoft	Updated On 2023-12-20	Infrastructure AWS	Category SOC 1
Name SOC 2 Report - MuleSoft	Updated On 2023-12-20	Infrastructure AWS	Category SOC 2
Name SOC 3 Report - MuleSoft	Updated On 2023-12-20	Infrastructure AWS	Category SOC 3
Name SOC 1 Report - Corporate Services	Updated On 2023-12-15	Infrastructure First party, AWS, Hyperforce	Category SOC 1
Name SOC 2 Report - Corporate Services	Updated On 2023-12-15	Infrastructure First party, AWS, Hyperforce	Category SOC 2
Name SOC 1 Report - Salesforce Data Cloud (fka CDP)	Updated On 2023-11-27	Infrastructure Hyperforce	Category SOC 1
Name SOC 2 Report - Amazon Web Services (AWS)	Updated On 2023-11-22	Infrastructure AWS, Hyperforce	Category SOC 2
Name Vulnerability/Penetration Report Summary - MuleSoft	Updated On 2023-11-15	Infrastructure AWS	Category External Security Assessments
Name Salesforce Secure Development Lifecycle Overview	Updated On 2023-11-01	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name MuleSoft BCP Summary 2023	Updated On 2023-10-17	Infrastructure AWS	Category Disaster Recovery & BCP
Name MuleSoft DR Test Summary 2023	Updated On 2023-10-17	Infrastructure AWS	Category Disaster Recovery & BCP
Name Salesforce Data Cloud Security White Paper (JP)	Updated On 2023-10-10	Infrastructure Hyperforce	Category FAQ's and White Papers
Name Spain ENS High - Corporate Services	Updated On 2023-09-15	Infrastructure First party	Category Spain Esquema Nacional de Seguridad (ENS)
Name Spain ENS High - Mulesoft	Updated On 2023-09-15	Infrastructure AWS	Category Spain Esquema Nacional de Seguridad (ENS)
Name PCI ASV Network Scan - MuleSoft	Updated On 2023-09-08	Infrastructure AWS	Category PCI DSS
Name Mulesoft ACSC Essential Eight Maturity report	Updated On 2023-08-31	Infrastructure AWS	Category IRAP
Name PCI Responsibility Matrix - MuleSoft	Updated On 2023-08-14	Infrastructure AWS	Category PCI DSS
Name Salesforce Data Cloud Security White Paper (EN)	Updated On 2023-07-29	Infrastructure Hyperforce	Category FAQ's and White Papers
Name Salesforce Third Party Risk Management Overview	Updated On 2023-07-28	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name UK Cyber Essentials Plus Certificate	Updated On 2023-07-21	Infrastructure First party, AWS, Hyperforce	Category UK Cyber Essentials Plus
Name Data Privacy Framework (DPF) Registration	Updated On 2023-07-17	Infrastructure First party, AWS, Hyperforce	Category U.S. Data Privacy Framework (DPF)
Name Salesforce Distributed Denial of Service (DDoS) Risk Mitigation Overview	Updated On 2023-06-12	Infrastructure First party, AWS	Category FAQ's and White Papers
Name CSA CAIQ - Mulesoft (EN)	Updated On 2023-03-13	Infrastructure AWS	Category CSA STAR
Name Salesforce Vulnerability Management Program Overview	Updated On 2022-12-12	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name IRAP Assessment Report - Mulesoft	Updated On 2022-11-10	Infrastructure AWS	Category IRAP
Name Mulesoft IRAP Addendum Letter June 2022	Updated On 2022-11-10	Infrastructure AWS	Category IRAP
Name Salesforce Security (Incident) Response Plan	Updated On 2022-11-01	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Salesforce Security (Incident) Response Plan (JP)	Updated On 2022-10-04	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Mulesoft IRAP Assessment letter	Updated On 2022-07-25	Infrastructure AWS	Category IRAP
Name TISAX Assessment Results	Updated On 2022-05-30	Infrastructure First party, AWS, Hyperforce	Category TISAX
Name Securely Operating the MuleSoft Environment	Updated On 2022-05-25	Infrastructure First party	Category FAQ's and White Papers
Name UK NHS Data Security and Protection Toolkit (DSPT)	Updated On 2022-05-19	Infrastructure First party, Hyperforce	Category NHS DSPT
Name Vulnerability Management and Response Plan Summary	Updated On 2021-09-27	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name BCP Summary	Updated On 2020-12-08	Infrastructure First party, AWS, Hyperforce	Category Disaster Recovery & BCP
Name International Transfers of EU Personal Data to Salesforce's Services FAQ	Updated On 2020-07-16	Infrastructure First party, AWS, Hyperforce	Category U.S. Data Privacy Framework (DPF)
Name APEC Processor Seal - Salesforce	Updated On 2020-07-10	Infrastructure First party, Hyperforce	Category APEC Certification for Processors and Controllers
Name [Whitepaper] Salesforce And The HIPAA Security Rule: Securing EPHI In The Cloud	Updated On 2019-11-01	Infrastructure First party, AWS, Hyperforce	Category HIPAA
Name CSA CAIQ - Mulesoft (JP)	Updated On 2019-09-10	Infrastructure AWS	Category CSA STAR
Name [Video] Salesforce And The HIPAA Security Rule: Securing EPHI In The Cloud	Updated On 2019-01-16	Infrastructure First party, AWS, Hyperforce	Category HIPAA
Name GDPR - Data Protection Impact Assessments & Salesforce Services	Updated On N/A	Infrastructure First party, AWS, Hyperforce	Category GDPR