security & compliance

We Take Security Seriously.

In order to help you accelerate sales, SalesLoft requires access to certain pieces of information.

Security In Sales

How secure is your sales process?

Learn more

Choose An Ally

Not a tool

Learn more

Rely On SalesLoft

A platform you can trust

Learn more

We’d Like to Explain How We Store, Process, and Secure Information.

We rely on some of the best providers to ensure we keep your information private, available, and unaltered.

ISO 27001

ISO 27001 is a globally recognized standard for the establishment and certification of an information security management system (ISMS).

View details here
SOC 2 Type 2

SalesLoft undergoes a SOC 2 Type 2 examination on an annual basis with a third party audit firm, Schellman & Company LLC, to ensure the security of our platform and its supporting infrastructure.

GDPR

SalesLoft is committed to ensuring ongoing compliance with the General Data Protection Regulation (GDPR). The GDPR extends the reach of the European Union’s data protection laws and establishes many new requirements for organizations that fall under its scope.

Learn more here
Data Centers

Even if our offices go dark, you’re still up and running. SalesLoft’s products run on world­ class infrastructure hosted at Amazon data centers running on Amazon Web Service (AWS) technology. Amazon data centers provide physical security 24/7, state­ of­ the­ art fire suppression, redundant utilities and biometric devices to ensure that our customers’ data is safe and secure.

Network Security

Your data is protected between you and our systems. We take multiple steps to prevent eavesdropping between you and our systems, as well as within our infrastructure. All network traffic runs over SSL/HTTPS, the most common and trusted communications protocol on the Internet.

Security Operations

If we see something, we’ll react quickly and remedy the issue. We’re not resting on our laurels. We’re always looking for potential system interruptions. If we do find something out of place, we’ll address the issue in a manner that it won’t be an issue in the future.

System Security

We’re relentlessly updating our systems to protect your data. Our virtual systems are replaced on a regular basis with new, patched systems. System configuration and consistency are maintained using a combination of configuration management, up-to-date images and continuous deployment.

Restricted Access

Only people who need access, get access. Production system access is limited to key members of the SalesLoft engineering team and passwords are expressly forbidden. At a minimum, authentication requires two factors including asymmetric RSA public/private keys and a time-based crypto token.

Penetration Testing

Don’t just take our word that our systems are secure. We don’t. Even though we’ve designed secure systems and procedures, we regularly perform security tests to identify and remediate potential vulnerabilities.

Logging

We’re watching to find misuse or occasional problems. Logging is a critical component to SalesLoft infrastructure. Logging is used extensively for application troubleshooting and investigating issues. Logs are streamed in real­time and over secure channels to a centralized logging service.

Application Level Security

We prevent single points of failure. Even if there is an interruption to one system, the rest of our services stay up and secure. We physically separate the database instances from application servers and heartily believe in the mantra of single­ function servers.

Data Protection, Continuity and Retention

We backup and test our systems, just in case. Production data is mirrored to remote systems and automatically backed up daily to an off­site location. Every change to a database is stored in the ‘write­ahead­log’ and immediately shipped off­site.

Internal IT Security

We protect our own systems to protect your data. SalesLoft offices are protected behind network firewalls from well­ known security vendors and secured by keycard access. Our employee workstations and laptops are imaged and managed using Puppet.

Logging

We’re watching to find misuse or occasional problems. Logging is a critical component to SalesLoft infrastructure. Logging is used extensively for application troubleshooting and investigating issues. Logs are streamed in real­time and over secure channels to a centralized logging service.

Account Cancellation

If we have to part ways, we’ll make sure your data isn’t at risk. To cancel and delete your account, please contact your account manager or our Customer Success team. Canceling your account will disable all access to SalesLoft Platform and affects all data associated with your account.