Does Sitefinity Cloud support GDPR, HIPAA, and other personal data best practices?

Sitefinity Cloud is SOC2-certified and HIPAA-compliant. The platform provides built-in tools and workflows that enable organizations to address GDPR and HIPAA requirements and other data privacy laws.  

SOC2 and HIPAA-compliance reports can be downloaded from the Progress Security Center.

Sitefinity helps safeguard Personally Identifiable Information (PII) and Protected Health Information (PHI) by utilizing field mapping, PII/PHI removal workflows and data obfuscation during database restore to a non-production environment to help organizations maintain compliance and ensure personal and data privacy.

The Sitefinity Cloud documentation summarizes the regulatory certifications that Progress Software has been awarded as a company and the ones that Progress Sitefinity Cloud complies with as a product.

What is SOC2?

SOC 2 is an independent audit report that provides detailed information and assurance of the security, availability, integrity, confidentiality and privacy controls an organization has implemented in its products and internal workflows.

What is HIPAA

HIPAA is a federal law that requires the creation of standards to protect sensitive patient health information from being disclosed without the patient's consent or knowledge.

Browse Sitefinity FAQs