Carbonbright's Trust Center

CarbonBright, Inc. recognizes that the confidentiality, integrity, and availability of the information and data we create, process, and host are fundamental to earning and maintaining the trust of our customers and partners.

As a technology provider supporting mission-critical product and sustainability data, we are committed to transparency in how we protect customer information. We clearly communicate our security practices, controls, and responsibilities so organizations can confidently rely on CarbonBright as a trusted platform.

CarbonBright has achieved SOC 2 Type II compliance, reflecting an independent assessment of our security controls and our commitment to maintaining a high standard of data protection over time.

This Trust Center provides an overview of how we safeguard data, manage risk, and continuously strengthen our security and compliance programs.

Compliances

SOC 2

Compliant

GDPR

Compliant

CPRA (formerly CCPA)

Compliant

Controls

Continuously monitored

Product security

Situational Awareness For Incidents

Data security

Identity Validation

Termination of Employment

Encrypting Data At Rest

Network security

Transmission Confidentiality

Anomalous Behavior

Capacity & Performance Management

App security

Conspicuous Link To Privacy Notice

Secure system modification

Endpoint security

Malicious Code Protection (Anti-Malware)

Full Device or Container-based Encryption

Endpoint Security Validation

Corporate security

Code of Business Conduct

Organizational Structure

Roles & Responsibilities

Resources

Acceptable Usage Policy

Policy

Access Control Policy

Policy

Access Control Procedure

Policy

Asset Management Policy

Policy

Asset Management Procedure

Policy

Business Continuity & Disaster Recovery Policy

Policy

Subprocessors

Google Workspace

IAM providers

Microsoft Azure

IT infrastructure

Zoho CRM

Customer Service

Github App

Development software

FAQ

Create your own Trust Center | Powered by