Shippo's Trust Center is the central resource for customers, prospects, and auditors to evaluate our security and compliance posture.
Shippo maintains compliance with industry recognized standards including SOC 2 Type II and PCI DSS, validated by independent third-party auditors. Compliance reports and documentation are available upon request through this portal. When new reports are issued, we make them available for customer download following execution of an applicable MNDA.
For security questions not covered here, reach our security team at security@goshippo.com.
Compliance
Documents
My Documents
Access Control
Infrastructure
Network Security
Data Security
Risk Profile
Vulnerability Assessment and Penetration Testing
Reports
Endpoint Security
Corporate Security
Documents Shippo's current SOC 2 type II report is available for request on this trust center. The bridge letter is also available to address the gap period between our observation period ending in November 2026.
We are proud and excited to announce that the Shippo has achieved SOC 2 Type 2 compliance.
SOC 2 Type 2 compliance requires an ongoing commitment to security and privacy practices and demonstrates our dedication to protecting our customers' data. We have uploaded the SOC 2 Type 2 report to our trust portal for our customers' reference.
Introducing the Shippo Trust Center, our latest initiative for openness in security practices and developments. Here, we will consistently update you on our measures to secure your data, our responses to emerging threats, and our compliance with regulatory standards. Have confidence in our unwavering commitment to the protection of your information and remain updated with the newest advancements in data security.