SOC 2 Audit
Proofpoint maintains SOC 2 audit, ensuring that our products meet the highest standard of data security and privacy for its customers.
Request Proofpoint’s SOC 2 Reports.
FedRAMP Authorization
Government agencies and public sector companies rely on Proofpoint to provide cloud-based products and services that meet the FedRAMP security, privacy, and resiliency standards.
Proofpoint’s FedRAMP authorization may be found at the FedRAMP Marketplace.
Cryptographic Modules
Proofpoint ensures that its products and services appropriately protect government customer data through the Federal Information Protection Standard (FIPS) certification and validation process.
Confirm Proofpoint’s validated cryptographic modules with the NIST Computer Security Resource Center.
STAR Registry
Proofpoint is listed on the Security, Trust, Assurance, and Risk (STAR) Registry documenting its security and privacy controls.
The STAR Registry Listing for Proofpoint may be found here.
PCI Compliant
Proofpoint Archive is PCI compliant.
IRAP
IRAP is an Australian Government initiative managed by the Australian Signals Directorate (ASD) designed to help ensure that information and communications technology (ICT) systems meet the requirements of the Australian Government Information Security Manual (ISM). By meeting IRAP control requirements, organizations can have confidence that Proofpoint maintains the security controls necessary to securely protect government systems and information.
Read more
Proofpoint U.S. Entities Covered by Data Privacy Framework Certification
Proofpoint complies with the EU-U.S., UK Extension to the EU-U.S., and Swiss-U.S. Data Privacy Frameworks. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov.
Proofpoint and its subsidiaries are responsible for the processing of personal data they receive, under the EU-U.S. DPF, DPF, the UK Extension to the EU-U.S. DPF, and Swiss-U.S. DPF, and subsequently transfers to a third party acting as an agent on its behalf.
Proofpoint and its subsidiaries comply with the EU-U.S. DPF Principles and the Swiss-U.S. DPF Principles for all onward transfers of personal data from the EU, UK, and Switzerland, including the onward transfer liability provisions.
© 2025 Proofpoint. All rights reserved. The content on this site is intended for informational purposes only.
Zuletzt aktualisiert July 23, 2025.
Proofpoint helps companies protect their people from the ever-evolving threats in the digital ecosystem.
