Security & Compliance
The SOC 2® Type II report is performed by an independent auditing firm. SOC 2 compliance is a crucial framework for technology and cloud computing companies; it is a complex set of requirements that must be reviewed and carefully addressed. Each year dmarcian undergoes an independent SOC 2 audit by a certified auditing firm to provide you with proof that that we are proactively protecting your data. Meeting SOC 2 compliance means we’ve established a process and a set of practices that guarantee oversight across our organization. Thanks to a company-wide effort, we are certified in the following SOC 2 Trust Service Principles:
- Security: All parts of the system are protected against unauthorized access, malicious attacks, data loss and other security events.
- Availability: dmarcian is available for operation and ensures that systems maintain high availability.
- Privacy: Personal information is protected from unauthorized access and collected, used, retained, disclosed and destroyed in conformity with the commitments in dmarcian’s privacy policy.
You can read dmarcian’s SOC 2 report here.
The General Data Protection Regulation (GDPR) is a regulation in EU law on personal data protection and privacy. The privacy and security of personal information is a dmarcian priority, and we are committed to respecting all of our customer’s rights under GDPR, as well as helping our customers meet their own requirements under GDPR. You can find more information on dmarcian’s GDPR policy here.
We are dedicated to treating your personal information with care and respect. Our mission is to spread DMARC adoption, not to harvest and sell your information. Our privacy policy is designed to provide transparency into our privacy practices and principles. Personal information is protected from unauthorized access and collected, used, retained, disclosed and destroyed in conformity with the commitments in dmarcian’s Privacy Policy.
ISO 27001:2013 is an international information security standard that describes a comprehensive best practice for an ISMS (information security management system) to keep confidential corporate information secure. Download this certification.
ISO 27017:2015 is a security standard developed for cloud service providers and users to make a safer cloud-based environment and reduce the risk of security problems.
Download this certification.
ISO 27701:2019 specifies requirements and provides guidance for establishing, implementing, maintaining and continually improving a Privacy Information Management System (PIMS) in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management within the context of the organization.
Download this certification.
ISO 22301:2019 specifies requirements to implement, maintain and improve a management system to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from disruptions when they arise.
Download this certification.