Security
Litmus takes security seriously. That’s why we invest in the team, tools, and processes that keep your data safe.
Enterprise-grade security features
Protect your sensitive data with customizable security rules, like two-step verification, single sign-on solutions, and custom password settings.
Committed to high security standards
Litmus runs on AWS and MacStadium—cloud platforms that share our commitment. Both AWS and MacStadium maintain SSAE 16 SOC 2 Type 2 compliance.
Reporting security problems
If you’ve discovered a vulnerability, please email a detailed description to security@litmus.com.
Learn more about security at Litmus with these resources:
- Questions about security at Litmus? Email us at security@litmus.com.
- Browse our Frequently Asked Security Questions
- For a quick overview, read our Simplified Security Policy
- For a detailed description of our security policies, read our guide on Information Security at Litmus
- Get more details about Litmus Advanced Security features
It’s our job to ensure that we maintain the highest levels of confidentiality, privacy, and security to safeguard Litmus and our customers from data loss and theft.
Compliance
Litmus aligns its security practices and policies with proven industry guidelines such as ISO 2700x and the Information Security Forum’s Standard of Good Practice for Information Security. Litmus has received a SOC 2 Type 2 report with no findings for two consecutive years.
General Data Protection Regulation
The General Data Protection Regulation (GDPR), the European Union’s new data privacy law, came into effect on May 25, 2018. Litmus is GDPR compliant.
If you are a data controller that is subject to European data privacy laws:
- Learn more about our Data Processing Agreement
- Execute our Data Processing Agreement
- See our list of subprocessors
If you are a data subject with rights under European data privacy laws and would like to submit a request to us, complete this form.
California Consumer Privacy Act
The California Consumer Privacy Act (CCPA), California’s data privacy law, came into effect on Jan 1, 2020. Litmus is CCPA compliant.
- See Terms of Service and Privacy Policy for details about CCPA
- See our list of service providers
If you are an individual with rights under California data privacy laws and would like to submit a request to us, complete this form.
Trusted by leading brands
Transparency
We believe that trust starts with transparency. That’s why we’ll always let you know when things don’t go as expected, and provide full visibility into how we use your data.
Real-time updates on our system status
See our system status at any time—24 hours a day, 7 days a week. Plus, you can access records of past incidents in our incident history.
Incident report plan
We’re committed to our investments in security, which means we’re prepared to react to any incidents, should they ever happen. Keeping customers in the loop about the severity, scope, root cause, and resolution of any incidents is a key part of our incident report plan.
Everything we think you should know
Here are the resources that provide you with full insights into how we use your data—and how you can change your preferences.
- Read the Litmus Terms of Service
- Read our Privacy Policy and learn how we handle personal data
- Read our Cookie Policy to learn more about the cookies we use and how you can update your preferences
- Read our Copyright Dispute Policy to learn about how we protect your copyrighted material
Reliability
When you depend on software to get your job done, speed and reliability matter. That’s why we continuously invest in making our infrastructure the best it can be.
Customer support you can count on
Our best-in-class customer support team is here for you if you get stuck. Have any questions? Email hello@litmus.com and we’ll get you the answers.
rate Litmus customer support as “great”
of inquiries resolved in less than 2 replies
of inquiries responded to within 24 hours