Security & Compliance

We take security seriously at SalesLoft.

SalesLoft is a security-first company. We help companies build trust through authentic customer relationships.
We work with industry-leading providers to ensure that your data is safe and secure. Learn more about how we store, process, and secure your information.
Security In Sales

How secure is your sales process?

Choose An Ally

Not a tool

Rely On SalesLoft

A platform you can trust

ISO 27001

ISO 27001 is a globally recognized standard for the establishment and certification of an information security management system (ISMS). Our entire information security program is built on the ISO 27001 framework and we complete re-certification and surveillance audits annually.

SOC 2 Type 2

SalesLoft undergoes a SOC 2 Type 2 examination of our security controls against the AICPA defined standards on an annual basis with a third party audit firm, Schellman & Company LLC, to ensure the security of our platform and its supporting infrastructure.

GDPR Readiness

SalesLoft is committed to ensuring ongoing compliance with the General Data Protection Regulation (GDPR). The GDPR extends the reach of the European Union’s data protection laws and establishes many new requirements for organizations that fall under its scope.

CCPA Readiness

The California Consumer Privacy Act (CCPA) was signed into law in June 2018 and goes into effect on January 1, 2020. SalesLoft is committed to ensuring compliance with the California Consumer Privacy Act (CCPA). The CCPA is a state law that provides consumer privacy rights and protections for residents of the state of California.

Data Centers

SalesLoft’s products run on world­ class infrastructure hosted at Amazon data centers running on Amazon Web Service (AWS) technology. Amazon data centers provide physical security 24/7, state­ of­ the­ art fire suppression, redundant utilities and biometric devices to ensure that our customers’ data is safe and secure.

Network Security

Your data is protected between you and our systems. We take multiple steps to prevent eavesdropping between you and our systems, as well as within our infrastructure. All network traffic runs over SSL/HTTPS, the most common and trusted communications protocol on the Internet.

Security FAQs

In order to help you accelerate sales, SalesLoft requires access to certain pieces of information. We’d like to explain how we store, process, and secure that information and more.

View FAQs
Security Operations

If we see something, we’ll react quickly and remedy the issue. We’re not resting on our laurels. We’re always looking for potential system interruptions. If we do find something out of place, we’ll address the issue in a manner that it won’t be an issue in the future.

System Security

We’re relentlessly updating our systems to protect your data. Our virtual systems are replaced on a regular basis with new, patched systems. System configuration and consistency are maintained using a combination of configuration management, up-to-date images and continuous deployment.

Restricted Access

Only people who need access, get access. Production system access is limited to key members of the SalesLoft engineering team and passwords are expressly forbidden. At a minimum, authentication requires two factors including asymmetric RSA public/private keys and a time-based crypto token.

Penetration Testing

Don’t just take our word that our systems are secure. We don’t. Even though we’ve designed secure systems and procedures, we regularly perform security tests to identify and remediate potential vulnerabilities.

Logging

We’re watching to find misuse or occasional problems. Logging is a critical component to SalesLoft infrastructure. Logging is used extensively for application troubleshooting and investigating issues. Logs are streamed in real­time and over secure channels to a centralized logging service.

Application Level Security

We prevent single points of failure. Even if there is an interruption to one system, the rest of our services stay up and secure. We physically separate the database instances from application servers and heartily believe in the mantra of single­ function servers.

Data Protection, Continuity, and Retention

We backup and test our systems, just in case. Production data is mirrored to remote systems and automatically backed up daily to an off­site location. Every change to a database is stored in the ‘write­ahead­log’ and immediately shipped off­site.

Internal IT Security

We protect our own systems to protect your data. SalesLoft offices are protected behind network firewalls from well-known security vendors and secured by keycard access. Our employee workstations and laptops are imaged and managed using JAMF.

Account Cancellation

If we have to part ways, we’ll make sure your data isn’t at risk. To cancel and delete your account, please contact your account manager or our Customer Success team. Canceling your account will disable all access to SalesLoft Platform and affects all data associated with your account.