Compliance Certifications
We maintain the highest industry standards and regularly undergo rigorous third-party audits to ensure compliance.
CompliantSOC 2 Type II
Audited controls for security, availability, and confidentiality trust service principles with an observation period.
CompliantSOC 2 Type I
Audited controls for security, availability, and confidentiality trust service principles.
CompliantHIPAA
US regulation that safeguards medical data privacy and security. Essential for healthcare providers, insurers, and related tech.
CompliantGDPR
EU regulation that governs personal data protection and privacy for individuals within the EU. Applies globally to anyone handling EU data.
Resource Library
Access our security documentation, policies, and compliance reports.
SOC 2 Type II
Compliance report
SOC 2 Type I
Compliance report
Breach Notification Policy
Policy document
Network Security Policy
Policy document
Data Classification Policy
Policy document
Incident Response Policy
Policy document
Security controls
Our comprehensive security program includes controls across multiple domains to protect your data.
Access Control & Authorization
Compliance with Regulations & Standards
Data Protection & Privacy
Governance & Oversight
IT & Operational Security
Risk & Compliance Management
Access Control & Authorization
Compliance with Regulations & Standards
Data Protection & Privacy
Governance & Oversight
IT & Operational Security
Risk & Compliance Management
Access Control & Authorization
Compliance with Regulations & Standards
Data Protection & Privacy
Governance & Oversight
IT & Operational Security
Risk & Compliance Management
Subprocessors directory
We carefully select and monitor all third-party services that process data on our behalf.
Notion
Documentation Platform
AWS
Cloud Infrastructure
Twilio
SMS & Text Messaging
Datadog
Monitoring & Observability
Linear
Task Management
Cloudflare
Content Delivery Network
Frequently Asked Questions
Find answers to common questions about our security and compliance practices.
Our Security Commitment
At Bland, security isn't just a feature—it's foundational to everything we build. Our security-first mindset drives our development processes, infrastructure decisions, and organizational policies.
We treat the data entrusted to us—whether from our customers, their end users, or anyone who interacts with our organization—with the utmost care and responsibility. Security is embedded in our DNA, enabling us to deliver innovative solutions without compromising on protection.
