Trust Center

Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

Welcome to CompuMail's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.

Compliance

SOC 2 Type 2 Logo
SOC 2 Type 2
HIPAA Logo
HIPAA
FISMA Moderate Logo
FISMA Moderate
VPAT Logo
VPAT

Documents

REPORTSHIPAA Report
COMPLIANCEFISMA Moderate
COMPLIANCEHIPAA
COMPLIANCESOC 2 Type 2
COMPLIANCEVPAT
POLICIESAcceptable Use Policy
POLICIESAccess Control Policy
POLICIESAnti-Malicious Software Policy
POLICIESAsset Authorization and Monitoring Policy
POLICIESAsset Management Policy
POLICIESAudit and Accountability Policy
POLICIESAwareness and Training Policy

Risk Profile

Data Access LevelRestricted
Impact LevelSevere
Recovery Time Objective4 hours
View more

Product Security

Audit Logging
Data Security
Integrations
View more

Reports

Data Flow Diagram (DFD)
HIPAA Report
Network Diagram
View more

Self-Assessments

Security self-assessments (CAIQ, HECVAT, etc.) are available upon request. Please contact our team for documentation.

Data Security

Access Monitoring
Certificates of Destruction
Data Asset Classification
View more

App Security

Responsible Disclosure
Application Penetration Testing
Bot Detection
View more

ESG

Anti-Bribery and Corruption
Anti-Competitive Practices
Anti-Modern Slavery
View more

Legal

Customer Audit Rights
Cyber Insurance
Data Processing Agreement
View more

Data Privacy

We follow industry-leading privacy frameworks and maintain internal policies around cookie handling, breach notifications, and consent-based data access.

Access Control

Access is tightly monitored and controlled at our company. We are happy to provide more details about our access control practices upon request.

Infrastructure

We take great care to work with best-in-class infrastructure providers that provide secure computing and storage. We are happy to provide more details about our infrastructure upon request.

Endpoint Security

Anti-Malware
Disk Encryption
DNS Filtering
View more

Network Security

We protect our corporate network against external & internal threats.

Corporate Security

We implement internal measures and practices to maintain a high standard of security.

Policies

Acceptable Use Policy
Access Control Policy
Anti-Malicious Software Policy
View more

Security Grades

We continuously monitor our infrastructure to ensure it meets internal security benchmarks and best practices.

Incident Response

We have a dedicated team that responds to security incidents. We are happy to provide more details about our incident response practices upon request.

Risk Management

We have a dedicated team that manages security risks. We are happy to provide more details about our risk management practices upon request.

Asset Management

We have strict asset management policies in place to ensure that all assets are accounted for and secure.

BC/DR

We have a business continuity plan in place to ensure that we can continue to operate in the event of a disaster.

Training

We provide security awareness training to all employees to ensure that they are aware of security best practices.This includes annual privacy training, phishing simulations, and role-based security modules.

Change Management

We have a change and configuration management process in place to ensure that changes are properly reviewed and approved.

Physical & Environment

We have physical and environmental controls in place to ensure that our data centers are secure and reliable.

Continuous Monitoring

We continuously monitor our systems for security threats and vulnerabilities. We are happy to provide more details about our continuous monitoring practices upon request.

Knowledge Base (FAQ)
Built onSafeBase by Drata Logo