Compliance at Prismforce


ISO/IEC 27001 is one of the most widely recognized independent international security standards. This certificate is awarded to organizations that comply with ISO's high global standards. Prismforce has earned ISO/IEC 27001:2013 certification for Applications, Systems, People, Technology, and Processes.

Applicable to- Information Security Management System of Prismforce applies to all the core functions such as application design, development, testing and deployment as well as support functions covering IT, HR, Sales, Finance, and Facilities & Administration.

Prismforce is SOC 2 Type II compliant. SOC 2 is an evaluation of the design and operating effectiveness of controls that meet the AICPA's Trust Services Principles criteria.
Applicable to- All cloud services and on-premise products of Prismforce.

GDPR is a pan-European regulation that requires businesses to protect the personal data and privacy of EU citizens for processing of their personal data.

Prismforce has always demonstrated its commitment to its user's data privacy by consistently exceeding industry standards.

Prismforce welcomes GDPR as a strengthening force of the privacy-consciousness that already exists in it.

Prismforce's offerings have privacy features that comply to GDPR, and Prismforce's processing of its customer's data adheres to the data protection principles of the GDPR.