In today’s digital world, trust is key. Period.

You put a lot on the line anytime you purchase another company’s software. Moving forward only comes when you have complete confidence in the company you’re buying from.

As a software technology company, we understand this better than anyone. We center all our decisions around understanding what our customer needs – and this is why security is built-in by design.

A person with a group pointing at a computer

More than 16 million developers and 32,000 companies trust SmartBear.

Our core philosophy is to provide tools that help dev teams retain quality throughout the development process, no matter what point of the software lifecycle they may be.

That can’t be done without implementing comprehensive security and privacy practices – both within our products and across our platforms.

When we focus on maintaining the highest level of security for our software tools, we naturally implement security protocols for the confidentiality of customer data. This leads to our ultimate goal: Letting our clients focus on delivering their best work without worry.


Immediate access to security

Security is a priority within our corporate environment and in every stage of our product development, enabling our security by design approach for managing risks.


Privacy and compliance – by design

SmartBear complies with global industry standards on data security and privacy, including the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Access SmartBear’s Privacy Policy here.

California Consumer Privacy Act compliance logo GDPR compliance logo

Up-front communication

Our global information and product security teams perform Vulnerability Assessments of our ongoing releases. All vulnerabilities found are managed internally as part of our vulnerability management process. All vulnerabilities are assigned a score using the CVSS scoring system and communicated as appropriate internally and externally through the NIST National Vulnerability Database (NVD) Common Vulnerabilities and Exposures (CVE) reporting process. View our latest CVE reports

Stay ahead of the curve with your compliance needs.

SmartBear complies where appropriate with international industry-standard certifications and regulations to ensure the security of our company, platforms, and customer data.

SOC II compliant certification
System and Organization Controls (SOC 2) Type I and II
ISO 27001 certification
International Organization for Standardization (ISO) 27001 International Information Security Standard

A Passion to Lead by Example

SmartBear Shared Responsibility

By committing to ethical corporate practices that promote good, we pledge to continue building quality business in our global communities through integrity.

Please access our shared responsibility page to learn more about how we are retaining quality customers through the shared values of trust and reliability.

Contact SmartBear Global Security and Privacy

Our global security team ensures the security of data stored within the SmartBear infrastructure and product.

Review our security guidelines

If you are reporting security vulnerabilities or if you are a security researcher, review our security reporting guidelines and policy.

Contact us

If you find a vulnerability in our service or website or want additional information about our security policies, you can contact us.

Close