Your auth is secure with us

Yes, Descope is SOC 2 Type 2 compliant and certified. To access our SOC 2 report, please contact us at security@descope[.]com.

Yes, Descope is ISO 27001 certified. If you have any questions, please contact us at security@descope[.]com.

Yes, Descope is GDPR compliant. For any questions, please contact security@descope[.]com.

Yes, Descope is HIPAA compliant. For any questions, please contact security@descope[.]com.

Yes, Descope is CSA STAR Level 2 certified. For any further questions, please contact security@descope[.]com.

Yes, Descope secures all communications using TLS to encrypt data in transit, as well as full disk encryption to encrypt data at rest.

Yes! Descope supports multi-region data residency, which means your customers' data can be stored and processed in the EU region to comply with GDPR and other regulations. If you are interested in EU data residency, reach out to support@descope[.]com.

See our privacy policy for more details.

Descope regularly undergoes external security penetration tests. To access our most recent report, please contact us at security@descope[.]com.

We welcome any and all feedback to continue improving our security posture. Please see our Vulnerability Disclosure Policy for more details.