GDPR and SOC2 compliancy
Passwd is committed to protecting your data privacy and security, particularly when it comes to managing sensitive information like passwords. Our solution is built with strong security practices, and while we ensure maximum protection across all options, it's important to note the distinction regarding GDPR and SOC2 compliance.
Enterprise plan: Offers complete control over data, infrastructure, and compliance, making it ideal for teams that need full control over their environment and need to meet specific regulatory requirements (e.g., GDPR, SOC2).
Workspace plan: Managed by Passwd, this option offers strong security with encryption, but does not provide the same level of compliance control as the Enterprise plan. It’s a great choice for teams who want a secure, hassle-free password manager without managing infrastructure.
Here's how the Enterprise plan secures your data with full GDPR/SOC2 compliance
Tier: Enterprise
No data processing by a third party
Our role here is to help you install and configure the team password manager on your Google Cloud setup. After that, you’re in complete control.
You are in control
Our password manager runs directly within your Google Cloud, giving you total control over your data. You decide where it’s stored, ensuring compliance with GDPR's data residency rules. Google Cloud itself is GDPR-compliant, and you can choose data centers within the European Economic Area (EEA) or elsewhere, depending on your needs.
Strong security measures
We take security seriously. We encrypt data in transit and at rest, have strong access controls and regular security audits. We even participate in a bug bounty program to continuously improve security, protecting your data from potential threats.
Management tools
You remain in control with our password manager’s tools for data management. Whether it’s importing, exporting, or deleting data, these features support your GDPR rights.
Transparency and Compliance
We’re committed to transparency. Our role is clearly defined - we assist with setup, but you manage your data. We aim for no confusion, keeping you fully informed about how your data is protected under GDPR.
For teams using Passwd’s Workspace plan, we still provide a highly secure platform with strong encryption, access controls, and regular security audits. This plan also ensures that your sensitive data is protected through the highest security standards, keeping your passwords and personal information safe.
Transparency and control
Whether you’re using the Workspace or the Enterprise subscription plan, transparency is key. We clearly define our role, helping you set up and configure the password manager and then you’re in charge of your data. We focus on providing peace of mind, ensuring that your data is protected and managed securely.