Resolver is SOC 2 Type 2 audited and ISO/IEC 27001:2013, ISO/IEC 27017:2015 and ISO/IEC 27701:2019 certified company.

Resolver SOC 2 Type 2 audit covers all five AICPA SOC 2 trust criteria: Security (or Common Criteria), Availability, Confidentiality, Processing Integrity, and Privacy which covers all Company processes and all aspects of the Core Application life cycle.

Resolver is compliant with applicable laws and regulations, such as EU and UK GDPR, and CCPA, depending on a customer’s data regionality and specific circumstances.

Resolver internal processes comply with the FIPPA, PHIA, and PIPEDA requirements.

Resolver provides software and services in compliance with the aforementioned applicable laws.

However, the service is provided based on a shared responsibility model. Given the flexibility and customizability of our solution, there is a part where customers will be responsible for ensuring that their usage is appropriate and in compliance with applicable laws and regulations.

Resolver also conducts an annual external, independent third-party penetration test cycle based on manual testing of web applications covering OWASP top 10 vulnerabilities, OWASP Application Security Verification Standard (ASVS), and business logic. Penetration test executive summaries and Resolver responses to findings are made available to customers under NDA, upon written request.

Further details of our compliance certifications can be found here  https://www.resolver.com/trust/compliance/

Please refer to:  https://www.resolver.com/legal/

Resolver Inc. Terms of Service  https://www.resolver.com/legal/terms-of-service/

GDPR Addendum:  https://www.resolver.com/legal/gdpr-addendum/

RESOLVER TRUST : Trust | Security & Certifications | Resolver