Trust and Security

Start your security review
View & download sensitive information
Ask for information
Search items

Overview

Welcome to Bold Commerce's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.

Compliance

CCPA Logo
CCPA
GDPR Logo
GDPR
PCI DSS Logo
PCI DSS
PIPEDA Logo
PIPEDA
SOC 2 Logo
SOC 2
Visa Service Provider Logo
Visa Service Provider
Start your security review
View & download sensitive information
Ask for information

Documents

SOC 2 Report
PCI DSS

Risk Profile

Data Access LevelRestricted
Impact LevelLow
Recovery Time Objective24 hours
View more

Product Security

Audit Logging
Role-Based Access Control
Service-Level Agreement
View more

Reports

PCI DSS
SOC 2 Report

Self-Assessments

We are working on our security compliance. We can provide completed questionnaires upon request.

Data Security

Access Monitoring
Backups Enabled
Data Erasure
View more

App Security

Responsible Disclosure
Code Analysis
Secure Development Training
View more

Access Control

Data Access
Logging
Password Security

Infrastructure

Anti-DDoS
BC/DR
Google Cloud Platform
View more

Endpoint Security

Disk Encryption
DNS Filtering
Endpoint Detection & Response
View more

Network Security

Firewall
IDS/IPS
Security Information and Event Management
View more

Corporate Security

Asset Management Practices
Email Protection
Employee Training
View more

Policies

We are currently working with experts to put together our company policies. Please contact us for more details.

Security Grades

Qualys SSL Labs
cashier.boldcommerce.com
A+
api.boldcommerce.com
A+
secure.boldcommerce.com
A+

Trust Center Updates

boldcommerce.com DMARC Policy Changes

GeneralCopy link

Hey There!

We wanted to let you know inform you about an upcoming change to our Domain-based Message Authentication, Reporting & Conformance (DMARC) policy for boldcommerce.com. Effectively immediately we will be changing our DMARC policy for failed messages to "quarantine" instead of "reject."

This change aligns with best practices and aims to protect both you and your recipients from fraudulent emails while minimizing disruptions to legitimate email delivery.

We understand that changes to email policies can sometimes raise questions. If you have any concerns or need further clarification about this update, please don't hesitate to contact our support team at support

Bold Commerce

Published at N/A*

PCI DSS Update

ComplianceCopy link

Hey There!

We wanted to reach out and let you know that our latest PCI DSS report has been uploaded to our Trust Center.

If you have any questions or concerns please don't hesitate to contact us.

Bold Commerce Team

Published at N/A

SOC2 Type 2 Update

ComplianceCopy link

Hey There!

We wanted to reach out and let you know that our latest SOC2 Type 2 report has been uploaded to our Trust Center.

If you have any questions or concerns please don't hesitate to contact us.

Bold Commerce Team

Published at N/A

Bold Commerce Security Update - LastPass

IncidentsCopy link

Hey There!

We wanted to reach out and let you know that there was a security incident at LastPass on December 22, 2022.

Although the stolen data was encrypted, we want to ensure your protection and peace of mind. As a proactive precautionary measure, we here at Bold Commerce are rotating all internal keys, passwords and secrets and are currently reviewing the use of LastPass within our organization.

If you have any questions or concerns please don't hesitate to contact us, we will be more then happy to help.

Bold Commerce Team

Published at N/A*

If you think you may have discovered a vulnerability, please send us a note.

Powered bySafeBase Logo