Compliance

Compliance

DocSend understands the serious ramifications of compliance and have diligently built processes to make our service compliant with the standards which govern your business.

The failure to adhere to information security standards is a risk no company should ever take. It can result in a range of costly penalties from civil fines to prosecution in criminal court. In some of the most extreme cases, the officers of a company that is non-compliant can face jail time. At DocSend we understand the serious ramifications of compliance and have diligently built processes to make our service compliant with the standards which govern your business.

Please contact our support team at [email protected] for access to our most recent SOC 2 report.

  • DocSend is compliant with SOC 2 Type II. DocSend is also GDPR-compliant so that customers can use DocSend to facilitate their GDPR compliance.

Here’s a list of some of the many procedures we’ve put in place to meet compliance standards:

  • Information Security Policy
  • Acceptable Use Policy
  • Code of Conduct
  • Background checks for all employees
  • ‍Endpoint encryption for all company owned/issued devices
  • Release Management Procedure
  • Change Management Procedure
  • Release Notes
  • Access Provisioning, Termination, and User Access Review Procedure
  • Incident Response Plan
  • Business Continuity and Disaster Recovery Plan
  • Penetration Testing Program
  • Bug Bounty Program
  • Incident Response Plan
  • Risk Assessment Program