Trust Center

Our own security posture, public and provable.

This page mirrors what every Joopler customer gets out of the box: a public Trust Center with frameworks, security overview, subprocessors, and gated document requests.

SOC 2HIPAAISO 27001PCI DSSISO 42001NIST 800-53OSCAL-native

Framework status shown here is illustrative.

Security overview

A short summary of how we operate.

Data protection

TLS 1.2+ in transit, AES-256 at rest, per-tenant KMS keys for evidence signing.

Access

SSO + MFA required for all Joopler personnel. Least-privilege, quarterly access reviews.

Isolation

Row-level and object-storage tenant isolation. WORM evidence with retention locks.

Subprocessors

Who we rely on to run Joopler.

VendorPurposeRegion
Amazon Web ServicesCloud infrastructure & WORM object storageUS
CloudflareCDN, WAF, DNSGlobal
StripeBilling & paymentsUS
ResendTransactional emailUS
SentryError monitoringUS

Subprocessor list is illustrative.

Documents

Request our security documentation.

SOC 2 Type II report

Available under NDA

Penetration test summary

Available under NDA

Security whitepaper

Public download

DPA & Subprocessor list

Public

Document requests are gated by a short form. Illustrative flow, no live downloads.

Give your customers this same page.

Every Joopler tenant gets a public, white-labelable Trust Center out of the box.