Trust Center

Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

To ensure the highest level of security, 15Five is continually investing in our overall information security program, resources and expertise.

As a service provider, we understand the importance in providing clear information about our security practices, tools, resources and responsibilities within 15Five so that our customers can feel confident in choosing us as a trusted service provider.

Compliance

CCPA Logo
CCPA
GDPR Logo
GDPR
PIPEDA Logo
PIPEDA
SOC 2 Logo
SOC 2
SOC 3 Logo
SOC 3

Documents

DOCUMENTSCAIQ 4.0.3
REPORTSNetwork Diagram
REPORTSPentest Report
COMPLIANCESOC 2
COMPLIANCESOC 3
AIAI Overview
POLICIESAcceptable Use Policy
POLICIESAccess Control Policy
POLICIESAsset Management Policy
POLICIESBackup Policy
POLICIESBusiness Continuity/Disaster Recovery (BC/DR) Policy
POLICIESConfiguration Management Policy

Risk Profile

Data Access LevelRestricted
Impact LevelSubstantial
Recovery Time Objective8 hours
View more

Product Security

Audit Logging
Data Security
Integrations
View more

Reports

Network Diagram
Pentest Report
Security Whitepaper
View more

Data Security

Access Monitoring
Data Asset Classification
Data Erasure
View more

App Security

Responsible Disclosure
Application Penetration Testing
Code Analysis
View more

AI

AI Overview

Legal

Subprocessors
Cyber Insurance
Data Processing Agreement
View more

Access Control

Bring Your Own Device (BYOD)
Data Access
Device Lock
View more

Infrastructure

Status Monitoring
Amazon Web Services
Anti-DDoS
View more

Endpoint Security

Anti-Malware
Disk Encryption
Endpoint Detection & Response
View more

Network Security

Firewall
IDS/IPS
Security Information and Event Management
View more

Corporate Security

Email Protection
Employee Handbook
Employee Training
View more

Policies

Acceptable Use Policy
Access Control Policy
Asset Management Policy
View more

Security Grades

Qualys SSL Labs
15five.com
A
15Five Application
A

Incident Response

Designated Response Personnel
Incident Reporting Process

Risk Management

Risk Assessments
Third-Party Dependence

Asset Management

Asset Classification
Asset Inventories (Hardware/Software)
IT Asset Management (ITAM) Program

BC/DR

Alternate Processing/Storage Site
Business Continuity Plan (BCP)
Data Backup/Backup Protection
View more

Change Management

Change Management Program
Change Restrictions
Configuration Management Program
View more
Trust Center Updates

SOC 2 Type II and SOC 3 2025 reports are available

Copy link
Compliance

We are pleased to announce the successful completion of our SOC 2 Type II audit. This assessment confirms that our controls related to security, availability, and confidentiality are both effectively designed and operating as intended over time.

In addition, we have received our SOC 3 report, which provides a high-level, publicly accessible overview of our audit results.

What this means for you:

  • Our security and compliance practices have been validated by a recognized third-party auditor.
  • The reports demonstrate our ongoing commitment to maintaining high standards in data protection, system reliability, and internal governance.
If you think you may have discovered a vulnerability, please send us a note.
Report issue
Built onSafeBase by Drata Logo