-
Spotfire maintains a robust portfolio of information security and quality management systems certifications and assessments.
AICPA SOC 2®
SOC 2 reports show the controls that Spotfire has in place as a service provider. Use of these reports is restricted and requires a signed NDA with Spotfire . The following product groups are in-scope for this report:
- TIBCO Cloud™ Spotfire®
Please contact your account executive for a copy of the report.
AICPA SOC 3®
SOC 3 reports are general-use versions of the SOC 2 report that can be shared with users who need assurance about Spotfire adherence to the Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy, but do not need the detailed control information of the SOC 2 report. The following product groups are in-scope for this report:
- TIBCO Cloud™ Spotfire®
Please contact your account executive for a copy of the report.
ISO/IEC 27001:2013
ISO/IEC 27001 certificates confirm that Spotfire's in-scope information security management systems adhere to internationally-recognized standards. The following product groups are in-scope for this report:
- TIBCO Spotfire® Product Group
Please contact your account executive for a copy of the certificate.
HIPAA/HITECH
A qualified third-party auditor has verified that Spotfire's in-scope information security management systems safeguard protected health information under HIPAA and HITECH. The following product groups are in-scope for this report:
- TIBCO Cloud™ Spotfire®
Please contact your account executive for a copy of the report.
Spotfire is a business unit within the Cloud Software Group. For security-related information for the Cloud Software Group, please refer to the Cloud Software Group Trust Center.