Trust & security

Built to enterprise security standards.

Security is a property of the product itself, not a layer added on top. Authoritative attestations, sub-processor lists, and security questionnaires live in the Trust Center. This page is the summary.

Posture

What enterprise buyers ask first.

SOC 2

Independent attestation

SSO, MFA, passkeys

Standards-based identity

Tenant isolation

Strict separation at the data layer

Encryption in transit and at rest

Modern, default

Privacy & data handling

A short version of how we handle data.

WorkPerfect’s privacy program is aligned with the EU GDPR, UK GDPR, and US state privacy laws including the CCPA. Customer data is processed under our Data Processing Addendum; the personal data we collect and how it’s handled is described in the Privacy Policy; the third parties that may process data on our behalf are listed at Sub-processors.

Responsible disclosure

Found something? Tell us.

Report security findings to security@work-perfect.com. We acknowledge promptly, triage by severity, and credit reporters on request. Full scope, safe-harbor terms, and submission guidance are in the vulnerability disclosure policy.

Procurement teams — read the full security overview →