Compliance

Leading organizations across the world trust HashiCorp to meet their regulatory, industry, and internal requirements for security and compliance. Learn more about how our suite of infrastructure automation software helps make this possible by protecting you and your customers.

Compliance program

ISO 27001International standard for information security management systemsDownload
ISO 27017International standard for securely utilizing or providing cloud servicesDownload
ISO 27018International standard for handling of PII in public cloudDownload

FIPS 140-2 | VaultUS government standard that specifies the requirements for cryptographic modules to protect sensitive informationMore information
FIPS 140-3 | VaultUS government standard that specifies the requirements for cryptographic modules to protect sensitive informationMore information
FIPS 140-2 | ConsulUS government standard that specifies the requirements for cryptographic modules to protect sensitive informationMore information

SOC 2SOC 2 is a restricted use audit report that focuses on controls relevant to security, availability, and confidentiality of a cloud service or product.Download