Trust Center

Start your security review
View & download sensitive information
Ask for information

Overview

Trust Alliance Logo

Split follows extensive practices to track and protect your data as it moves through Split’s services.

Compliance

CCPA Logo
CCPA
CPRA Logo
CPRA
EU-US DPF Logo
EU-US DPF
GDPR Logo
GDPR
ISO 27001 Logo
ISO 27001
Privacy Shield Logo
Privacy Shield
SOC 2 Logo
SOC 2
VCDPA Logo
VCDPA
Start your security review
View & download sensitive information
Ask for information

Split is reviewed and trusted by

LendingTreeLendingTree
SalesforceSalesforce
ZapierZapier
WeWorkWeWork
LexisNexisLexisNexis
Sony MusicSony Music
EventbriteEventbrite
ClickUpClickUp
MentimeterMentimeter
SkillshareSkillshare
CrunchbaseCrunchbase
SchlumbergerSchlumberger

Documents

All
Public
Private
Network Diagram
Pentest Report
Security Whitepaper
SOC 2 Report
ISO 27001
SOC 2
CAIQ
Cyber Insurance
Data Processing Agreement
Business Continuity & Disaster Response Plan
Information Security Policy
Data Transfer Impact Assessment

Risk Profile

Data Access LevelRestricted
Impact LevelModerate
Recovery Time Objective2 hours
View more

Product Security

Audit Logging
Data Security
Integrations
View more

Reports

Network Diagram
Pentest Report
Security Whitepaper
View more

Self-Assessments

CAIQ

Data Security

Access Monitoring
Backups Enabled
Data Erasure
View more

App Security

Responsible Disclosure
Code Analysis
Credential Management
View more

Legal

Subprocessors
Cyber Insurance
Data Processing Agreement
View more

Access Control

Data Access
Logging
Password Security

Infrastructure

Status Monitoring
Amazon Web Services
Anti-DDoS
View more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management
View more

Network Security

DNSSEC
Firewall
IDS/IPS
View more

Corporate Security

Email Protection
Employee Training
Incident Response
View more

Security Grades

Qualys SSL Labs
Web Application
A+
API
A+
SDK
A+
Events
A+
Auth
A+
Telemetry
A+
Integration Service
A+

Trust Center Updates

Split's 2023 SOC 2 Report now available

ComplianceCopy link

Split's SOC 2 Type 2 report for the 12 month monitoring period ending in January 2023 is now available to request and download from our Security Portal.

Published at N/A

Split's Response to the 2022 OpenSSL 3.0.x Vulnerabilities

IncidentsCopy link

On November 1, 2022, the OpenSSL Project published two high-severity vulnerabilities (CVE-2022-3602 and CVE-2022-3786). Any version between 3.0.0 and 3.0.6 of OpenSSL is affected. The initial guidance, as published, is users should expedite the upgrade to version 3.0.7 to reduce the impact of this threat.

At this time, we’ve found that our public-facing endpoints are not affected by these vulnerabilities. We also continue to monitor the U.S. government Cybersecurity & Infrastructure Security Agency (CISA) guidance on these vulnerabilities.

Published at N/A

Split has earned the ISO 27001 certification

ComplianceCopy link

We’re pleased to announce that Split has earned the ISO 27001 certification.

ISO 27001 certification is an important milestone that further demonstrates Split’s dedication to best-in-class security and compliance while operating at a global scale.

ISO 27001 was developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) to standardize the process for establishing, implementing, operating, monitoring, reviewing, and maintaining an information security management system (ISMS).

Split’s platform provides an always-on and highly secure feature flagging and feature experimentation service. From the beginning we have designed our infrastructure and practices with security as a top priority. The ISO 27001 certification validates our commitment to this principle.

To request a copy of Split’s ISO 27001 certificate, visit the Split Security Portal.

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Report Issue
Powered bySafeBase Logo