Welcome to Treasure Data's Trust & Security Center.
At Treasure Data, Trust and Security are at the forefront of everything we do. Use this portal to learn about our security posture and request access to our security assurance documentation.
Prospective customers should reach out to our Sales team here if you're interested in learning more about our CDP. Existing customers should reach out to your Customer Success Manager if you're interested in more information.
Treasure Data has reviewed and updated all IT + Security (ITS) policies for 2024. Customers can view and download Treasure Data's latest ITS policies under the Policies & Plans card of our Trust and Security Center.
Treasure Data is excited to announce the completion of our annual independent Web Application penetration testing of the Customer Data Platform (CDP) Console for 2024. Treasure Data engaged a penetration testing third party, NetSPI LLC., to conduct Web App testing of Treasures Data in a production environment between June 17-21, 2024. Customers can obtain the Web App Penetration Testing Results Report under the "Documents" section of our Trust and Security Center. This report includes the Web App Penetration Test summary of findings & results and the remediation plan by Treasure Data for any identified vulnerabilities.
Treasure Data is excited to announce the completion of our annual independent penetration testing of the Customer Data Platform (CDP) APIs for 2024. Treasure Data engaged a penetration testing third party, NetSPI LLC., to conduct API testing of Treasures Data in a production environment between March 11 - 22, 2024. Customers can obtain the API Penetration Testing Results Report under the "Documents" section of our Trust and Security Center. This report includes the API Penetration Test summary of findings & results and the remediation plan by Treasure Data for any identified vulnerabilities.
In prior years, all penetration testing scopes (External Network, Web Application, APIs, and Thick App) were tested in a single quarter. Starting in 2024, Treasure Data will conduct one penetration test scope per quarter of the calendar year.
2023 ISO/IEC 27001 Certificate Now Available + Additional Compliance with ISO/IEC 27017 and 27018!
ComplianceCopy linkTreasure Data has completed our annual ISO/IEC 27001:2013 audit and received our updated 2023 certificate. Additionally, to further bolster our compliance program and meet our customer’s expectations, we are excited to announce compliance with two additional ISO standards - ISO/IEC 27017:2015 and ISO/IEC 27018:2019! Customers can view and download the applicable certificates within the ISO 27001 card of our Trust and Security Center.
Treasure Data has completed the 2023 SOC 2/3 Type 2 PLUS HIPAA external audit covering controls within Treasure Data’s Enterprise Customer Data Platform (CDP) from January 1, 2023 to December 31, 2023. Our external auditor, A-LIGN, has informed us that no exceptions were identified. Customers can view and download Treasure Data’s most recent external audit report under the SOC 2 Type 2 Report and SOC 3 Type 2 Report card of our Trust and Security Center.
If you need help using this Trust Center, please contact us.
If you think you may have discovered a vulnerability, please send us a note.