Overview
At Litmus our commitment to data privacy and security is embedded in every part of our business. It’s our job to ensure that we maintain the highest levels of confidentiality, privacy, and security to safeguard Litmus and our customers from data loss and theft.
Use this portal to learn about our security posture and request access to our security documentation.
Compliance
CCPA
CSA STAR
GDPR
Microsoft SSPA
Privacy Shield
SOC 2
TruSight
Documents
Litmus SOC2 Type II Report
Pentest Report
CSA STAR
CAIQ v4.0.1
SIG Lite
Litmus Personalize Pentest
Litmus Personalize/Kickdynamic SOC 2 Type I Report
Network Diagram
HECVAT Litec 2023
Cyber Insurance
Information Security Policy
Risk Profile
Data Access LevelInternal
Impact LevelLow
Recovery Time Objective24-48 Hours
See more
Product Security
Audit Logging
Data Security
Integrations
See more
Reports
Litmus Personalize Pentest
Litmus Personalize/Kickdynamic SOC 2 Type I Report
Litmus SOC2 Type II Report
See more
Self-Assessments
CAIQ v4.0.1
HECVAT Litec 2023
SIG Lite
Data Security
Access Monitoring
Backups Enabled
Data Erasure
See more
App Security
Change Management
Code Analysis
Encryption Key & Credential Management
See more
Legal
Subprocessors
Copyright Dispute Policy
Cyber Insurance
See more
Data Privacy
Cookies
Data Breach Notifications
Data Collected
See more
Access Control
Data Access
Logging
Password Security
Infrastructure
Endpoint Security
Disk Encryption
Endpoint Detection & Response
Mobile Device Management
See more
Network Security
Data Loss Prevention
Firewall
IDS/IPS
See more
Corporate Security
Asset Management Practices
Email Protection
Employee Training
See more
Policies
Acceptable Use Policy
Access Control Policy
Asset Management Policy
See more
Knowledge Base
- Does Litmus conform with a specific industry standard security framework? (e.g. NIST Cybersecurity Framework, ISO 27001, etc.)
- Does Litmus have a documented and currently followed change management process?
- Are all components of Litmus Disaster Recovery & Business Continuity Plan reviewed at least annually and updated as needed to reflect change?
- Can the Litmus application enforce password/passphrase aging requirements?
- What does Litmus do?
See more
If you need help using this portal, please contact our Cybersecurity Risk team.
If you think you may have discovered a vulnerability, please send us a note.