Compliance engineered for the Cloud

Salesforce maintains a comprehensive set of compliance certifications and attestations to validate our #1 value of Trust.

Salesforce Professional Services

Applicable to professional services performed by SFDC, its Affiliates, or its or their respective permitted subcontractors under an SOW or Order Form, including the provision of any Deliverables specified in such SOW or Order Form. Controls applicable to certain aspects of the Professional Services (e.g. asset management, employee training, and hiring practices) are covered by Salesforce’s common enterprise-level controls applicable to Salesforce’s company-wide corporate environment (“Salesforce’s Corporate Environment”). The security and privacy-related audits and certifications included in the list below are applicable to Salesforce’s Corporate Environment, as further described in the Professional Services Security Privacy and Architecture Documentation.

Please refer to the "Audits and Certifications" section of the service-specific Security, Privacy and Architecture documentation for details regarding the security and privacy related audits and certifications received.

Applicable documents by category

Filter this list

Sort by Updated On
Name ISO/IEC 27001:2022 Certificate	Updated On 2025-07-23	Infrastructure First party, AWS, Hyperforce	Category ISO 27001
Name ISO/IEC 27017:2015 Certificate	Updated On 2025-07-23	Infrastructure First party, AWS, Hyperforce	Category ISO 27017
Name ISO/IEC 27018:2019 Certificate	Updated On 2025-07-23	Infrastructure First party, AWS, Hyperforce	Category ISO 27018
Name UK NHS Data Security and Protection Toolkit (DSPT)	Updated On 2025-06-15	Infrastructure First party, Hyperforce	Category Other Reports and Certificates
Name SOC 1 Report - Corporate Services	Updated On 2025-06-04	Infrastructure First party, AWS, Hyperforce	Category SOC 1
Name SOC 2 Report - Corporate Services	Updated On 2025-06-04	Infrastructure First party, AWS, Hyperforce	Category SOC 2
Name Salesforce's Approach to Security	Updated On 2025-05-20	Infrastructure First party, Hyperforce	Category FAQ's and White Papers
Name Salesforce Trusted AI Impact Report	Updated On 2025-05-20	Infrastructure First party, Hyperforce	Category FAQ's and White Papers
Name Salesforce EU Processor Binding Corporate Rules	Updated On 2025-05-14	Infrastructure First party, AWS, Hyperforce	Category Salesforce BCRs
Name Salesforce UK Processor Binding Corporate Rules	Updated On 2025-05-14	Infrastructure First party, AWS, Hyperforce	Category Salesforce BCRs
Name Salesforce Infrastructure & Sub-processors Documentation	Updated On 2025-05-13	Infrastructure First party, AWS, Hyperforce, Azure, GCP	Category General Compliance Related Documents
Name Salesforce Health & Safety Policy	Updated On 2025-05-02	Infrastructure First party, AWS, Hyperforce, Azure, GCP	Category Resilience, BCP & DR
Name Salesforce Security (Incident) Response Plan	Updated On 2025-05-01	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Salesforce Security (Incident) Response Plan (JP)	Updated On 2025-05-01	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name FY25 Stakeholder Impact Report	Updated On 2025-04-15	Infrastructure First party, Hyperforce	Category FAQ's and White Papers
Name Salesforce Vulnerability Management Program Overview (JP)	Updated On 2025-04-11	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Salesforce Enterprise Resilience/BCP Summary	Updated On 2025-04-01	Infrastructure First party, AWS, Hyperforce	Category Resilience, BCP & DR
Name Salesforce Vulnerability Management Program Overview (EN)	Updated On 2025-03-25	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name CMMI Level 3 Appraisal Report	Updated On 2025-02-21	Infrastructure First party, Hyperforce	Category Other Reports and Certificates
Name ISO 9001:2015 - Salesforce, Inc.	Updated On 2025-01-31	Infrastructure First party	Category Other Reports and Certificates
Name ISO Statement of Applicability (EN)	Updated On 2025-01-28	Infrastructure First party, AWS, Hyperforce	Category ISO 27001
Name ISO Statement of Applicability (FR)	Updated On 2025-01-28	Infrastructure First party, AWS, Hyperforce	Category ISO 27001
Name Salesforce Third Party Risk Management Overview	Updated On 2025-01-02	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Vulnerability Management and Response Plan Summary	Updated On 2025-01-02	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Professional Services Infrastructure and Sub-processors	Updated On 2024-12-17	Infrastructure First party, AWS, Hyperforce	Category GDPR
Name Professional Services Security Privacy and Architecture	Updated On 2024-12-17	Infrastructure First party, AWS, Hyperforce	Category GDPR
Name Salesforce Secure Development Lifecycle Overview	Updated On 2024-12-05	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Professional Services Data Processing Addendum	Updated On 2024-12-01	Infrastructure First party, AWS, Hyperforce	Category GDPR
Name GDPR - Data Protection Impact Assessments & Salesforce Services	Updated On 2024-08-14	Infrastructure First party, AWS, Hyperforce	Category GDPR
Name Infrastructure and Sub-processors for Professional Services	Updated On 2024-03-19	Infrastructure First party, AWS, Hyperforce	Category GDPR
Name Security Perspective on the Shared Responsibility Model	Updated On 2023-07-24	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Data Privacy Framework (DPF) Registration	Updated On 2023-07-17	Infrastructure First party, AWS, Hyperforce	Category U.S. Data Privacy Framework (DPF)
Name Salesforce Enterprise Security Overview (JP)	Updated On 2022-10-04	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name International Transfers of EU Personal Data to Salesforce's Services FAQ	Updated On 2022-09-01	Infrastructure First party, AWS, Hyperforce	Category U.S. Data Privacy Framework (DPF)
Name Security Perspective on the Shared Responsibility Model (JP)	Updated On 2022-08-02	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers
Name Salesforce Enterprise Security Overview	Updated On 2022-03-11	Infrastructure First party, AWS, Hyperforce	Category FAQ's and White Papers