Trust & Security Center
Compliance
SmartSimple collects, holds, and processes various kinds of data, many of which are confidential, protected, or sensitive information. To protect against unauthorized access, data breaches, and other security threats, we maintain a formalized and rigorous security program designed to ensure the security and integrity of your data.
We are obligated under various data protection legislation to have in place an institutional framework designed to ensure the security of all confidential data during its lifecycle, including clear lines of responsibility.
To assist your compliance and legal teams assess and validating our ability to meet the compliance requirements of your organization we provide self-serve access to the following compliance resources within our Trust Portal.
Access our risk assessments
|
CyberGRX
Customers can use the Framework Mapper feature which will allow them to map SmartSimple’s assessment to commonly used industry frameworks and standards to instantly gain visibility into controls coverage.
Access the SmartSimple CyberGRX Assessment. |
Third-party audits and certifications
|
ISO 27001
Validate our ISO 27001 Certification. |
SOC reports — Our System and Organizational Controls (SOC) Report provides information about our controls environment and may be relevant to your internal controls. The purpose of these reports is to help you and your auditors understand our control environment that supports operations and compliance. The SOC reports are independent assessments of our control environment by a third-party auditor (Deloitte).
|
SOC 1
Register to access our SOC Report. |
|
SOC 2 Type II
Register to access our SOC2 Report. |
|
SOC 2 + HITRUST Mapping
Register to access our this report. |
Other reports
|
G-Cloud
View our G-Cloud Profile. |