Plaud protects your data by meeting the rigorous requirements of international security and privacy frameworks. To support your due diligence process, we provide complete documentation for business customers and compliance teams via the Drata Trust Center.
Overview of Plaud security and regulatory compliance
The Plaud security framework is built upon internationally recognized certifications and key regulatory standards including:
- ISO/IEC 27001:2022 — Information Security Management Systems
- ISO/IEC 27701:2019 — Privacy Information Management Systems
- GDPR Compliance
- SOC 2 Type II
- HIPAA Compliance
- EN 18031
What does each standard and certification mean?
- ISO/IEC 27001:2022 — Demonstrates Plaud's commitment to securing sensitive information through robust information security management practices.
- ISO/IEC 27701:2019 — Focuses on privacy information management, ensuring Plaud meets global privacy standards.
- GDPR — General Data Protection Regulation compliance confirms that Plaud protects personal data in accordance with EU privacy laws.
- SOC 2 Type II — Covers security, availability, and confidentiality of data, demonstrating Plaud's effective controls over systems that store or process customer data.
- HIPAA — The Health Insurance Portability and Accountability Act compliance shows that Plaud adheres to stringent standards for handling and securing healthcare-related information.
- EN 18031 — Meets European cybersecurity standards for secure wireless communication.
How to access Plaud's compliance documentation?
Plaud's official certification documents are available through the Drata Trust Center. Use the Drata Trust Center to retrieve ISO 27001, ISO 27701, SOC 2 Type II, GDPR, HIPAA, and EN 18031 documents.
Notes on security and compliance
- All certifications and compliance standards apply to all plans. ISO 27001/27701, GDPR, SOC 2, HIPAA and EN 18031 compliance cover Starter, Pro, Unlimited, and Team plans alike.
- Plaud Team introduces advanced administrative controls. In addition to our standard certifications, the Team plan provides Workspace Level Data Residency, and a formal Data Processing Addendum.
FAQ about security and compliance
Is Plaud HIPAA compliant?
Yes. Plaud has obtained a HIPAA Validation Report. The Health Insurance Portability and Accountability Act compliance shows that Plaud adheres to stringent standards for handling and securing healthcare-related information.
Is Plaud GDPR compliant?
Yes. Plaud is GDPR compliant. The GDPR Validation Report is available through the Drata Trust Center.
Is Plaud SOC 2 compliant?
Yes. Plaud is SOC 2 Type II compliant. The certification covers security, availability, and confidentiality controls over the systems that store and process customer data.
Where can I download the certification documents?
Use the Drata Trust Center link above to download ISO 27001, ISO 27701, SOC 2 Type II, GDPR, HIPAA, and EN 18031 documents.
Does Plaud Team have additional security and compliance features?
Yes. Plaud Team adds Workspace-Level Data Residency and Data Processing Agreement (DPA) on top of the standard certifications. See the Plaud Team section of the Help Center for details.