Backbuild Trust Center
Backbuild is a multi-tenant platform for building, deploying, and distributing SaaS products. This trust center provides security, compliance, and privacy information for our customers, their security teams, and external auditors.
Quick links
- Compliance status — SOC 2, HIPAA, PCI DSS, ISO 27001, FedRAMP, GDPR
- Security program — Encryption, authentication, access control
- Privacy and data handling — Data residency, retention, subject rights
- Sub-processors — Third parties with access to customer data
- Data Processing Agreement — DPA and Standard Contractual Clauses
- HIPAA Business Associate Agreement
- Report a vulnerability
Current compliance status
| Framework | Status | Target |
|---|---|---|
| SOC 2 Type II | In progress | Q4 2026 |
| ISO 27001:2022 | In progress | Q1 2027 |
| HIPAA-aligned controls | Aligned | BAA available |
| PCI DSS v4.0 | Controls aligned | Scope dependent |
| FedRAMP Moderate | Roadmap | Not committed |
| GDPR / UK GDPR | Compliant | DPA available |
For current audit reports, gap assessments, or detailed evidence packages, contact security@backbuild.ai.
Need more information?
Security questionnaires, architecture diagrams, penetration test summaries, and policy documents are available to customers and prospective customers under NDA. Contact our security team to initiate a review.
Security team: security@backbuild.ai
Privacy and data protection: privacy@backbuild.ai
Vulnerability reports: Responsible disclosure policy