🪄 Our new AI-powered features are here! Learn more.

Log in

Trust center

At Pipedrive, we maintain the highest standards of security and privacy, giving you transparency and reassurance in how we protect your data.

Our CRM security policies are designed to meet the necessary criteria for businesses in different locations to comply with local and global security standards. Pipedrive uses a world-class hosting infrastructure and state-of-the-art encryption for your data, employing a dedicated data protection officer who spearheads data protection compliance and initiatives.

Certificates

Pipedrive is dedicated to protecting your data with multiple security certificates, world-class infrastructure and a range of CRM privacy and security features, including user permissions, single sign-on and two-factor authentication.

Resources

SOC 2
Whitepaper
RFC 2350
Pipedrive Vulnerability Disclosure Program

Pipedrive shares the following information with all customers:

  1. Security and Privacy Whitepaper
  2. SOC 3 report
  3. ISO/IEC 27001:2013 certificate
  4. Pipedrive DPA (our legal contract detailing our commitments in regard to data protection)

Pipedrive shares the following additional information with all customers who’ve signed NDAs*:

  1. SOC 2 Type II report
  2. Security questionnaires. Pipedrive fills out questionnaires for customers who are on the Enterprise Tier

*Please reach out to your contact person/account executive for clarification or to receive the above documents.

Pipedrive CRM security policy

We at Pipedrive adhere to the following guidelines to meet the highest standards of CRM security policy:

  • Customers’ data is stored in separate databases to avoid the risk of any leaks into other databases
  • Pipedrive accounts are hosted in AWS data centers in Europe and the US by hosting providers compliant with SAS 70 type II
  • All information is encrypted via secure HTTPS connections and is backed up daily through Amazon Web Services
  • Pipedrive complies with GDPR and adheres to SOC 2, SOC 3, the EU-US Data Privacy Framework and ISO/IEC 27001:2013
  • Pipedrive employees are regularly trained regarding security best practices and regulations

FAQs

See how Pipedrive works for your business