Trust Center

Get access to this Trust Center
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Overview

Trust Alliance Logo

ServiceTitan has implemented best-in-class security practices to keep customer data safe. Our security program is based on best practices in the SaaS industry. As such, our goals when executing this program are:

  • Trust, Transparency, and Protection of Customers data: ServiceTitan is committed to protecting and keeping the privacy and confidentiality of our customer's data and information. We are also committed to transparency and will respond pro-actively in any situation.
  • High Availability and Continuity of Service: you can follow live at https://servicetitan.statuspage.io/.
  • Risk & Compliances: Compliance profiles have a list of controls. We compare our SaaS solution, including technology and operations, against these controls.

Compliance

ISO 27001 Logo
ISO 27001
ISO 27018 Logo
ISO 27018
PCI DSS Logo
PCI DSS
SOC 1 Logo
SOC 1
SOC 2 Logo
SOC 2
Get access to this Trust Center
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Documents

Other Reports
Security Whitepaper
ISO 27001
ISO 27018
PCI DSS
SOC 1
SOC 2
CAIQ Lite
SIG Core
SIG Lite

Product Security

Audit Logging
Data Security
Integrations
View more

Reports

Other Reports
PCI DSS
Pentest Report
View more

Self-Assessments

CAIQ Lite
SIG Core
SIG Lite

Data Security

Access Monitoring
Backups Enabled
Data Erasure
View more

App Security

Responsible Disclosure
Bot Detection
Code Analysis
View more

Legal

Subprocessors
Privacy Policy
Terms of Service

Access Control

Data Access
Logging
Password Security

Infrastructure

Amazon Web Services
Anti-DDoS
Azure
View more

Endpoint Security

Disk Encryption
DNS Filtering
Endpoint Detection & Response
View more

Network Security

Data Loss Prevention
Firewall
Security Information and Event Management
View more

Corporate Security

Email Protection
Employee Training
Incident Response
View more

Policies

Acceptable Use Policy
Access Control Policy
Anti-Malicious Software Policy
View more

Security Grades

SecurityScorecard
All company assets
Security Scorecard A grade
ImmuniWeb
Cloud Security Test of servicetitan.com
A
Qualys SSL Labs
ServiceTitan SaaS offering
A+
ServiceTitan .com
A+
View more

Trust Center Updates

ServiceTitan was NOT affected by the Okta data breach.

IncidentsCopy link

Okta confirmed that ServiceTitan was not affected by the recent incident in their support organization that exposed session tokens and cookies.

Published at N/A

ServiceTitan is NOT affected by Spring4Shell

IncidentsCopy link

A set of high-profile vulnerabilities have been identified affecting the popular Java Spring Framework and related software components (CVE-2022-22947, CVE-2022-22950, CVE-2022-22963, CVE-2022-22965) generally being referred to as Spring4Shell. ServiceTitan is not affected by these vulnerabilities.

Published at N/A

Log4j (CVE-2021-44228)

IncidentsCopy link

ServiceTitan was not directly affected by CVE-2021-44228; however, some 3rd party products were. All instances of Log4J in 3rd party products used internally have been patched. In an abundance of caution, ServiceTitan continues to monitor its environments for any re-occurrence as part of the company's regular vulnerability management program. In addition, we logged all attack attempts against our product and reproduced each one to confirm none of them were successful.

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Report Issue
Powered bySafeBase Logo