Compliance isn’t just about checking boxes — it’s about building trust and safeguarding both customer and company data. According to PwC’s Global Compliance report, 51% of respondents view cybersecurity and data privacy as top compliance priorities.
That’s why Salesforce is excited to share recent milestones in its compliance journey that directly contribute to a better, more secure experience for customers. Salesforce has expanded its Payment Card Industry (PCI) certifications to include Agentforce, Data Cloud and Einstein Platform, and has also achieved ISO 9001 compliance for all of Salesforce, demonstrating our commitment to secure transactions and quality management.
Salesforce also joined the PCI Security Standards Council as a Principal Participating Organization (PPO), the highest level of membership with the Council. These organizations work closely with the Council to discuss standards direction, drive technical discussions, and provide input into Council initiatives, helping to provide a more secure payment ecosystem.
The compliance ecosystem is expanding, driven by global growth and technological advancements, making it important to stay ahead in maintaining trust and security. At Salesforce, trust is the foundation of everything we do, and we know our customers rely on trusted providers to protect their most valuable data. Salesforce takes that responsibility seriously, which is why it’s important to exceed the highest standards of security, compliance, and quality.
PCI compliance: Confidence in a secure platform
Maintaining secure transactions is essential to upholding customer expectations — in fact, 92% of U.S. consumers made some form of digital payment over the past year. PCI compliance is a set of rigorous security standards designed to ensure businesses handle credit card information safely to prevent fraud and data breaches. These standards ensure that transactions are well-protected when using Salesforce solutions. When a transaction is made, payment data has enhanced protection against potential threats, providing a more secure Salesforce environment for conducting business.
We believe in taking a proactive approach to safeguarding customers’ sensitive financial information and maintaining the highest levels of security, compliance and trust. Salesforce has achieved PCI compliance for several products, including Agentforce, Data Cloud, and Einstein Platform.
By achieving PCI compliance, Salesforce aims to build confidence in our platform, allowing our customers to focus on growing and innovating without worrying about the safety of financial data. We are committed to providing secure cloud solutions that benefit customers, while enhancing the security of digital transactions everywhere.
A more secure payment ecosystem
Meeting security standards alone is not enough. Salesforce is committed to proactively collaborating with industry leaders to address evolving threats and protect the entire payment ecosystem. Joining the PCI Security Standards Council as a PPO allows Salesforce to provide direct industry insight into the ever-evolving security landscape and help strengthen and enhance the standards that keep its customers’ payment data secure.
By contributing to the PCI Data Security Standards, which help protect credit card information and reduce fraud, Salesforce can share expertise in security, compliance, and AI-driven initiatives to help strengthen PCI regulations.
Salesforce’s ongoing commitment to customer success with ISO 9001 certification
In addition to PCI compliance, Salesforce has achieved ISO 9001 certification, the gold standard for quality management systems (QMS). This globally recognized third-party benchmark helps organizations identify and mitigate potential quality risks, ensuring that products and services meet customer requirements and regulatory standards, all while focusing on efficiency and satisfaction.
More than just a certification, ISO 9001 is a testament to ensuring that processes, systems, and infrastructure operate seamlessly behind the scenes so the platform is available whenever needed. Customers need tools that work, with minimal downtime.
The goal is simple: to keep businesses secure and running without interruption. Businesses in regulated industries or those with strict compliance needs often require vendors to hold ISO 9001 certification. Achieving this allows for seamless partnerships and opens doors for customers to expand into new markets.
Cybersecurity Compliance and Regulation
Discover the key players, rules, and challenges of compliance and regulation.
Achieving PCI compliance and ISO 9001 certification is all about providing customers with the peace of mind that comes with a secure, reliable platform. It’s understandable that businesses rely on Salesforce, and we’re committed to maintaining the highest standards of security and quality. Our customers can feel confident that their data is protected and their operations are supported by a trusted partner.
Learn more:
