Trust Center
Security at Trustpage
Security, privacy, and reliability are at the core of our DNA. We’re leading the way in creating a new era of trust in software.
Assessments
Cloud Security Alliance (CSA) Consensus Assessment Initiative Questionnaire (CAIQ)
This questionnaire documents what security controls exist at Trustpage. The questions correspond to the controls of CSA’s Cloud Controls Matrix (CCM). A copy is maintained in the CSA STAR Registry.
Documentation
Learn how to use the features of your Trust Center to start building trust faster.
Trustpage applications are hosted by Heroku, a Salesforce company. This resource provides an overview of Heroku's security practices.
Trustpage applications are hosted by Heroku, a Salesforce company; Heroku's infrastructure is hosted by Amazon Web Services (AWS). This resource provides an overview of AWS's security practices.
Trustpage applications are hosted at Heroku, a Salesforce company This resource provides an overview of Heroku's security practices.
An overview of the access level required to set up Trustpage's Slack and CRM integrations.
Policies
Incident Response Plan
NDA
Human Resource Security Policy
NDA
Code of Conduct
NDA
Information Security Roles and Responsibilities
NDA
Trustpage's terms and conditions are governed by Vanta's Master Subscription Agreement.
Access Control Policy
NDA
Asset Management Policy
NDA
Cryptography Policy
NDA
Risk Management Policy
NDA
Third-Party Management Policy
NDA
Data Processing Agreement
Data Management Policy
NDA
Information Security Policy
NDA
Operations Security Policy
NDA
Physical Security Policy
NDA
Business Continuity and Disaster Recovery Plan
NDA
Secure Development Policy
NDA
Reports
SOC 2 Type II Report
NDA
An independent service auditor's report on controls relevant to security as of August 16, 2022.
Web Application Pentest Report
NDA
A report summarizing the results of a pen test conducted by a third-party checking for exploitable vulnerabilities in Trustpage's web apps and user security.