Claroty Named a Leader in 2025 Gartner® Magic Quadrant™ for CPS Protection Platforms
Get the Report
Request a Demo
Claroty Toggle Search

Claroty Trust Center

Talk to an expert

Request a Demo
View Resources
See our YouTube Channel

Compliance & Certifications

Claroty understands that our customers need to comply with their national, regional, and industry-specific requirements. We have made significant progress on security certifications for our services, and we continue to invest in this area.

AICPA SOC Badge

SOC 2 Type 2

SOC 2 Type 2 certification validates our ongoing commitment to managing data securely and maintaining stringent operational standards. Evaluated across security, availability, processing integrity, confidentiality, and privacy, our compliance demonstrates robust controls and processes that provide continuous assurance to our customers and partners.

Contact Us

ISO 27001 Badge

ISO 27001:2022

ISO 27001:2022 is the internationally recognized standard for information security management systems (ISMS). By following this comprehensive framework, we ensure the confidentiality, integrity, and availability of information through risk-based controls and continual improvement, offering our customers industry-leading security practices and assurance.

ISO 27701

ISO 27701 extends the ISO 27001 standard to include privacy information management systems (PIMS). Our adherence to ISO 27701 strengthens our privacy controls, ensuring compliance with global data privacy regulations and demonstrating a proactive approach to protecting personal data.

BSI C5 Badge

C5 (Cloud Computing Compliance Controls Catalog)

The C5 (Cloud Computing Compliance Controls Catalog) is a standard developed by the German Federal Office for Information Security (BSI) for cloud service providers. Our adherence to C5 ensures robust security practices, transparency, and compliance with stringent data protection and IT security requirements, enhancing customer confidence in our cloud-based services.

HIPAA Compliant Badge

HIPPA

The Health Insurance Portability and Accountability Act (HIPAA) establishes national standards for safeguarding sensitive patient health information. Our adherence to HIPAA ensures that our solutions meet strict privacy, security, and breach notification requirements to protect health data, demonstrating our commitment to regulatory compliance and trust in the healthcare industry.

See the Policy

SOCI

The Secure Organization Controls Index (SOCI) measures the maturity of security controls and practices within an organization. By aligning with SOCI, we demonstrate our commitment to continuous security improvements, effective governance, and proactive risk management.

See the Certification

EU GDPR Compliant Badge

GDPR

The General Data Protection Regulation (GDPR) governs the privacy and security of personal data for individuals within the European Union. Our alignment with GDPR ensures that we prioritize data protection, transparency, and user rights, reinforcing trust and compliance in the global data protection landscape.

Learn more

Upcoming Certifications

Tisax Badge

Tisax

TISAX is a security standard for the automotive industry, governed by the ENX Association. Our TISAX certification will reflects our commitment to information security, confidentiality, and data integrity, ensuring we meet the highest standards for automotive supply chain security and trust.

CCN Badge

CCN (Centro Criptológico Nacional Standards)

The CCN (Centro Criptológico Nacional) standards provide a security framework for public-sector IT systems in Spain. By complying with CCN guidelines, we ensure that our solutions meet stringent information security and risk management requirements, delivering trusted services to government and enterprise clients.

CCPA

The California Consumer Privacy Act (CCPA) enhances privacy rights and consumer protection for residents of California. Our compliance with CCPA will empower consumers with greater control over their personal data and demonstrates our commitment to transparency and data privacy in line with evolving regulatory standards.

How Claroty Protects Your Data

Welcome to Claroty’s Trust Center. We are committed to providing transparency about how we protect customer data and secure our environment. Our robust, multi-layered data protection and information security program incorporates technical, organizational, and procedural controls designed to safeguard data, mitigate cybersecurity risks, and ensure compliance with leading industry standards and regulations, including ISO 27001, ISO 27701, SOC 2 Type 2, GDPR, HIPAA, and other applicable local privacy laws.

Read our Security & Privacy FAQ’s

GDPR

Claroty complies with the European Union’s General Data Protection Regulation (GDPR), with our strong foundation of implemented security and privacy frameworks and certified security and privacy controls.

Data Processing Agreement (DPA)

Data Processing Agreements are required by the GDPR.

Read our DPA

Privacy Impact Assessment (PIA)

PIAs are useful tools for negating risk and demonstrating GDPR compliance.

Read our PIA

Third Party Sub-Processors

Sub-processors are third parties engaged by processors to handle personal data on behalf of data controllers, extending GDPR responsibilities.

See our Third Party Sub-Processors

External Audit Reports

Contact us

Recent Pen Test

Contact us

To obtain either of these documents, an NDA must be signed first

Report a Vulnerability

Do you have a vulnerability you would like to report?

Please report your vulnerability here
Claroty