Security & Compliance

Your data is safe with us

Truelist is SOC 2 Type II certified. We've built security into every layer of our platform so your email data and your customers' data are always protected.

verified_user

SOC 2 Type II

Certified

lock

TLS 1.2+

Encryption in transit

public

GDPR

Compliant

workspace_premium

ISO 27001

Compliant

SOC 2 Type II Certified

Truelist has completed a SOC 2 Type II audit, the gold standard for SaaS security compliance. This independent audit verifies that our security controls have been operating effectively over a sustained period — not just at a single point in time.

The audit covers five trust service criteria: security, availability, processing integrity, confidentiality, and privacy. Our report is available to enterprise customers under NDA upon request.

Request our SOC 2 report

lock

Data Encryption

check All data in transit encrypted with TLS 1.2 or higher
check Data at rest encrypted using industry-standard AES-256
check Encryption keys managed with strict rotation policies

cloud

Infrastructure

check Hosted on AWS and OVH with enterprise-grade security
check Isolated network environments and firewalls
check All production system access is restricted and logged

manage_accounts

Access Controls

check Principle of least privilege — employees access only what they need
check Strong authentication required for all internal systems
check Access reviews conducted regularly

delete_forever

Data Retention & Privacy

check Email validation data automatically deleted after 30 days
check Delete your data anytime through account settings
check Compliant with GDPR and global privacy regulations

Responsible Disclosure

Found a security vulnerability? We appreciate responsible disclosure and will work with you to address any issues promptly.

security@truelist.io View our Privacy Policy →

Ready to put Truelist
to the test?

Find out if Truelist is right for you in under 10 minutes.

Free plan available. No credit card required.