LIVEPERSON security
Unparalleled standards, unmatched security
For 20+ years, LivePerson has led the way in data and systems security, with applications, infrastructure, and policies vetted by advanced security teams for our Fortune 500 customers.
Trusted by thousands of brands worldwide
What makes our security best-in-class?
Protecting customer data
From masking and encryption of data at rest to Firewalls, ACLs, Load Balancers, and dedicated DDoS protection technology, we defend your data.
Regular vulnerability testing
Operating systems are hardened, and we regularly test the infrastructure for potential vulnerabilities, both internally and externally by independent third parties, including through our formal Vulnerability Disclosure Policy and Program.
See the details
Disaster recovery
All data centers provide N+1 or greater UPS and cooling power. Every component of the infrastructure is redundant, including the facilities used to operate data centers.
Compliance and security certifications
LivePerson is committed to being a trusted partner, and we meet the most relevant international security and privacy standards.
SSAE 18 SOC2+HIPAA (formerly SAS70)
We conduct yearly data center audits and our reporting is compliant with the American Institute of Certified Public Accountants (AICPA).
ISO 27001
Our Information Security Management System is aligned with the ISO 27001 standard.
PCI DSS 3.2.1
We handle payment data and secure transactions in compliance with Payment Card Industry Data Security Standards 3.2.1.
GDPR
Our data and privacy policies are in full compliance with EU General Data Protection Regulation.
SOX
Our finance and security operations are compliant with all Sarbanes-Oxley requirements.
HIPAA via Business Associate Agreement (BAA)
LivePerson executes BAAs with HIPAA-covered entities to certify PHI protections.
HITRUST CSF® v9.3
LivePerson is HITRUST CSF® v9.3 certified to ensure robust security protection for our customers, including HIPAA-covered entities.