Orgvue Compliance

Is a SOC 2 Type 2 report available for Orgvue?

Orgvue completes a SOC 2 Type 2 report annually. SOC 2 reports are shared with customers on request and under NDA. Please contact infosec@orgvue.com for information.

Is Orgvue ISO 27001 certified?

Orgvue is an ISO 27001, ISO 27018 and CSA STAR (Cloud Security Alliance) certified organisation. The Orgvue application is central to the scope of these assurance programs. Certificates are available at: https://www.orgvue.com/trust-center/compliance/

Orgvue is compliant with international legislation and data protection laws. As a Data Processor, Orgvue delivers compliance with its GDPR obligations to provide sufficient guarantees in implementing appropriate technical and organisational measures, notably through our SOC 2 Type 2, ISO 27001, ISO 27018 and CSA STAR assurance programs. Certificates are available to download at: https://www.orgvue.com/trust-center/compliance/

Independent third-party reviews of Orgvue’s Information Security Management System are completed annually as part of SOC 2 Type 2, ISO27001 and CSA STAR.

Orgvue has an established internal audit program to support compliance with its information security policies and program. The audit function maintains independence from the respective lines of business.

With respect to the AWS hosting infrastructure, information on AWS security compliance standards is available at: https://aws.amazon.com/compliance/programs/