Contents x
    Compliance Resources
      • Print
      • Dark
        Light
      • PDF
      Contents

      Compliance Resources

        • Print
        • Dark
          Light
        • PDF
        Article summary

        Rocket.Chat is committed to maintaining the highest information security and regulatory compliance standards. This document outlines our adherence to industry standards and regulations, detailing our certifications and compliance measures. Our commitment to these standards ensures that Rocket.Chat remains a trusted and secure platform for all users.

        Compliance certifications

        ISO 27001 certification

        • Scope: Hosted Offering, App Store, Software Development

        • Details: Rocket.Chat is certified under ISO 27001, an internationally recognized standard for information security management systems. Our adherence to this standard is validated annually by an independent third-party auditor.

        • Certification period: Valid from June 2020 to June 2026

        • Applicability: This certification is crucial for due diligence, security reviews, regulatory compliance, internal audits, and supply chain audits. Statement of Applicability document includes a comprehensive list of controls, specifying their relevance and applicability.

        • First certification date: June 2020

        • Certifying body: QMS Certification Services

        Certificate 2023.pdf

        Certificate 2020.pdf

        SOC 2 compliance

        • Scope: Hosted Offering

        • Details: Rocket.Chat has obtained a SOC 2 Type I attestation report, confirming that our controls are suitably designed and provide reasonable assurance of meeting service commitments and system requirements.

        • Report type: Type I, covering Security, Confidentiality, and Availability

        • Issued by: Prescient Assurance LLC

        • Date: 25 October 2023

        • Validity: Valid until October 2024

        Rocket.chat Technologies Corp._Letter of Attestation SOC 2 Type 1.pdf

        Accessing compliance reports

        • Prospects: If you are an active customer, a Non-Disclosure Agreement (NDA) is required in the CRM for the SOC 2 Type I report.

        • Active customers: If you are an active customer with signed customer terms, kindly contact Aline Nunes and Mayara Santos and furnish them with the email address to which the report should be dispatched.

        • If you are a rocketeer providing the report: Check if the prospect or customer has an NDA in place.

        • Contact information: For more details or to request reports, users can contact [email protected].

        Rocket.Chat's commitment to compliance and security is an integral part of our service offering. By adhering to these rigorous standards, we ensure our platform remains secure, reliable, and trustworthy for all stakeholders. For any further inquiries or specific compliance-related questions, please reach out to our compliance specialists.

        Was this article helpful?
        What's Next
        Rocket.Chat versions receive support for six months after release. End-of-life for any version is the last day of the month when support ends.
        ESC

        Eddy AI, facilitating knowledge discovery through conversational intelligence