Compliance

The PerimeterX Platform is CCPA compliant.

The PerimeterX Platform is compliant with the California Consumer Privacy Act (CCPA), a state statute designed to enhance privacy rights and consumer protection for residents of California. Also, PerimeterX will never sell any personal information.

PerimeterX Bot Defender is GDPR compliant.

On May 25, 2018, the General Data Protection Regulation (GDPR), will come into enforcement. The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy.

PerimeterX is ISO 27001:2013 Certified.

PerimeterX is ISO 27001:2013 certified, attesting that our security program is in accordance with industry-leading best practices and the PerimeterX commitment to information security at every level of our organization. ISO 27001/IEC 27000 provides the requirements for Information Security Management System (ISMS).

PerimeterX Bot Defender is compliant with PCI DSS version 3.2.1 for Service Providers.

The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle branded credit cards from the major card schemes - Visa, MasterCard, American Express, Discover, and JCB.

PerimeterX is certified under the EU-US Privacy Shield and the Swiss-US Privacy Shield, and we employ standard contractual clauses. These frameworks help enable companies to legally transfer personal data from the European Union and Switzerland to the United States. For more information, please visit PerimeterX Privacy Policy. To view our certification, please visit PerimeterX Privacy Shield.

The PerimeterX platform is compliant with SOC 2® Type 2.

SOC 2 is an evaluation of operational effectiveness as defined by the AICPA Trust Service principles which are security, availability, processing integrity, confidentiality, and privacy.