Skip to content

Security qualifications

Braze takes data privacy and security for our organization, our customers, and our customer’s customers seriously.

These are performed by independent, third-party auditors. We are compliant with these internationally-recognized standards and codes of practice to ensure that our security standards are up-to-date and in line with leading best practices.

For more on this, check out Braze Perspectives!

ISO 27001 certification

ISO certification graphic

Braze has certification for compliance with ISO 27001 as of December 18, 2018, and renewed as of August 29, 2025. Expires December 15, 2027.

Any third party wishing to independently verify the status of Braze’s certification may see the Schellman certificate directory or see our certificate here.

SOC 2 examination

SOC 2 examination graphic

Last Review Date/Period: July 1, 2024 to June 30, 2025

Braze has successfully completed the Type 2 SOC 2 examination for Security and Availability, performed by independent CPA firm Schellman & Company, LLC.

TISAX assessment

TISAX graphic.

Braze is committed to maintaining the highest standards of information security and data protection and has successfully completed a TISAX Assessment Level 3 (AL3). These assessment results and issuance of corresponding labels reflect our dedication to maintaining the highest level of information security and data protection assurance. Current TISAX participants can verify our assessment results for the following assessment objectives and location through the ENX Association portal using the following credentials:

  • Company Name: Braze
  • Scope ID: SNCM4K
  • Assessment ID: AMH9TZ-1
  • Assessment Objectives: * Data Protection according to EU-GDPR Art. 28 (“Processor”)
    • Data Protection with special categories of personal data
    • High Availability
    • Very High Availability
    • Confidential
    • Strictly Confidential

HIPAA

Braze’s HIPAA (Health Insurance Portability and Accountability Act of 1996) cluster complies with the Security and Privacy rules of HIPAA, as applicable. When creating this cluster, Braze worked with a lawyer who advised on HIPAA laws and worked through the compliance needs for HIPAA with respect to the Security and Privacy rules. This included a risk analysis for the environment, as well as going through each safeguard and ensuring compliance as required.
Github   Edit this page on GitHub
New Stuff!