Security Portal

Get access to this Security Portal
Had access before? Reclaim access

Overview

This page provides an overview of security programs at Compaas. For any security related questions that haven't been addressed on this page, please email us at security@compa.as.

Compliance

CCPA Logo
CCPA
GDPR Logo
GDPR
Privacy Shield Logo
Privacy Shield
SOC 2 Logo
SOC 2
Get access to this Security Portal
Had access before? Reclaim access

Compaas is reviewed and trusted by

RedditReddit
Guardant HealthGuardant Health
MasterClassMasterClass
Verana HealthVerana Health
AlationAlation
BenchlingBenchling

Risk Profile

Data Access LevelRestricted
Impact LevelModerate
Recovery Time Objective24-48 Hours
See more

Product Security

Role-Based Access Control
Audit Logging
Data Security
See more

Reports

Network Diagram
Pentest Report
SOC 2 Report

Data Security

Access Monitoring
Backups Enabled
Data Erasure
See more

App Security

Bot Detection
Responsible Disclosure
Software Development Lifecycle
See more

Access Control

Data Access
Logging
Password Security

Infrastructure

Anti-DDoS
BC/DR
Google Cloud Platform
See more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management

Network Security

DNSSEC
Firewall

Corporate Security

Employee Training
Incident Response
Internal Assessments
See more

Security Grades

Qualys SSL Labs
compa.as
A+
www.compa.as
A+

Trust Center Updates

Compaas Response to the 2022 OpenSSL 3 Vulnerabilities

Compaas takes security and data privacy seriously. After careful review of our infrastructure and SBOM, Compaas Security has determined that we are not currently vulnerable to the OpenSSL 3 vulnerabilities CVE-2022-3602 and CVE-2022-3786 that were disclosed on November 1, 2022.

OpenSSLV3 culnerability background

To learn more about this vulnerability: https://www.openssl.org/news/vulnerabilities-3.0.html

Published at 11/03/2022, 5:43 PM

Updated SOC 2 Type II compliance report

Compaas has recently completed our 2022 SOC 2 Type II compliance process. Updated penetration testing and SOC 2 Type II audit reports are available from the trust portal. You may download these directly from https://security.compa.as.

Published at 09/08/2022, 7:44 PM

Updated subprocessors

Compaas has updated the subprocessor list for our products and services. This list is available on our security portal. Please contact privacy@compa.as for any questions regarding this subprocessor information.

Published at 07/20/2022, 9:21 PM

If you think you may have discovered a vulnerability, please send us a note.