LIVEPERSON security

Unparalleled standards, unmatched security

For 20+ years, LivePerson has led the way in data and systems security, with applications, infrastructure, and policies vetted by advanced security teams for our Fortune 500 customers.

Trusted by thousands of brands worldwide

Virgin Atlantic logo smallIBM logo smallLancome logo smallRBS logo smallDavid's Bridal logo

What makes our security best-in-class?

Protecting customer data

From masking and encryption of data at rest to Firewalls, ACLs, Load Balancers, and dedicated DDoS protection technology, we defend your data.

Regular vulnerability testing

Operating systems are hardened, and we regularly test the infrastructure for potential vulnerabilities, both internally and externally by independent third parties, including through our formal Vulnerability Disclosure Policy and Program.

See the details

Disaster recovery

All data centers provide N+1 or greater UPS and cooling power. Every component of the infrastructure is redundant, including the facilities used to operate data centers.

Compliance and security certifications

SSAE 18 SOC2+HIPAA (formerly SAS70)

We conduct yearly data center audits and our reporting is compliant with the American Institute of Certified Public Accountants (AICPA).

ISO 27001

Our Information Security Management System is certified for ISO compliance.

PCI DSS 3.2.1

We handle payment data and secure transactions in compliance with Payment Card Industry Data Security Standards 3.2.1.

GDPR

Our data and privacy policies are in full compliance with EU General Data Protection Regulation.

SOX

Our finance and security operations are compliant with all Sarbanes-Oxley requirements.

HIPAA via Business Associate Agreement (BAA)

LivePerson executes BAAs with HIPAA-covered entities to certify PHI protections.

HITRUST CSF® v9.3

LivePerson is HITRUST CSF® v9.3 certified to ensure robust security protection for our customers, including HIPAA-covered entities.