Built on the Salesforce Platform

FinancialForce applications were developed on Force.com, an industry-leading and mature platform for cloud applications provided by Salesforce. FinancialForce applications listed on AppExchange go through a qualitative and quantitative security review process with Salesforce to ensure applications meet a set of security standards and best practices. By leveraging an industry-leading cloud platform for business applications, FinancialForce applications and our customers’ data benefit from a variety of security features and controls in such areas as user management, access control, disaster recovery, backups, physical and network security. As a result, FinancialForce applications satisfy our customers’ most stringent data security requirements, and comply with major security, privacy and data protection laws and standards globally.

Salesforce Certifications

FinancialForce applications are developed and run natively on the Force.com platform, we benefit from the security controls designed and implemented by Salesforce. Salesforce undergoes comprehensive privacy and security assessments by, and has achieved certifications from, multiple auditors and certifying bodies. These include the following security- and privacy-related audits and certifications:

Geographical Recognition

  • EU / EEA Binding Corporate Rules for Processors
  • EU / EEA and Switzerland Safe Harbor self-certification through the U.S. Department of Commerce
  • TRUSTe Certified Privacy Seal

Global Audit Compliance

  • ISO 27001
  • SSAE 16/ISAE 3402 SOC-1
  • SOC 2
  • SOC 3
  • FedRAMP
  • PCI-DSS
  • TÜV Rheinland Certified Cloud Service

A current list of security and privacy assessments and certifications of the Salesforce platform can be found at https://trust.salesforce.com/en/compliance/

Additional Salesforce Security Resources