βœ…

Compliance & Certifications

Meeting the highest standards for data protection, privacy, and security across global regulations

Current Certifications

πŸ”’

SOC 2 Type II

Certified

Annual audits for security, availability, and confidentiality

πŸ‡ͺπŸ‡Ί

GDPR

Compliant

Full compliance with EU data protection regulation

🌍

ISO 27001

Certified

International standard for information security management

πŸ₯

HIPAA

Ready

Healthcare data protection safeguards in place

πŸ’³

PCI DSS

Level 1

Payment card industry data security standard

πŸ‡ΊπŸ‡Έ

CCPA

Compliant

California Consumer Privacy Act compliance

Industry-Specific Compliance

πŸ₯ Healthcare (HIPAA)

For healthcare organizations handling Protected Health Information (PHI):

  • Business Associate Agreement (BAA) available
  • Administrative, physical, and technical safeguards
  • Audit logging and breach notification procedures

πŸ’³ Finance (PCI DSS)

For organizations handling payment card data:

  • PCI DSS Level 1 Service Provider certification
  • Tokenization of payment data
  • Quarterly vulnerability scans and annual penetration tests

Global Privacy Compliance

πŸ‡ͺπŸ‡Ί European Union - GDPR

Full compliance with General Data Protection Regulation including data subject rights, DPA, and Standard Contractual Clauses for international transfers.

πŸ‡ΊπŸ‡Έ United States - CCPA/CPRA

Compliance with California Consumer Privacy Act and California Privacy Rights Act, including opt-out rights and data deletion requests.

πŸ‡§πŸ‡· Brazil - LGPD

Lei Geral de Proteção de Dados compliance with data protection requirements similar to GDPR.

πŸ‡¨πŸ‡¦ Canada - PIPEDA

Personal Information Protection and Electronic Documents Act compliance for Canadian data.

Audits & Transparency

Third-Party Audits

  • Annual SOC 2 Type II audits by independent auditors
  • Quarterly penetration testing by certified security firms
  • Continuous vulnerability scanning and remediation
  • ISO 27001 surveillance audits

Transparency Reports

We publish annual transparency reports detailing government requests, security incidents, and compliance updates. Reports are available at sparrow.help/transparency.

Security Documentation

Enterprise customers can request our SOC 2 reports, penetration test summaries, and compliance documentation through their account manager.

Questions About Compliance?

Our compliance team is here to help with certification questions and documentation

Email: compliance@sparrow.help