Expel is a security company, so it should be no surprise that we take data security and privacy seriously. We want to make sure you have all the answers to your questions regarding how we protect your data. Welcome to the Expel Trust & Compliance one-stop-shop.
You’ll find direct access to our compliance documentation, the different standards, laws, and frameworks (you name it!) that we align to at Expel. Questions about ISO 27001, GDPR compliance, SOC 2 Type 2 reports? It’s all here.
Don’t see what you’re looking for? Reach out directly via the “conversations” icon in the toolbar.
Documents
On March 29, 2024, we became aware of the XZ Utils backdoor vulnerability [CVE-2024-3094] and promptly investigated our environment. After investigation, our security team confirmed that none of the impacted operating systems or versions are utilized.
For more details on this vulnerability, please visit https://nvd.nist.gov/vuln/detail/CVE-2024-3094
We're pleased to announce that we recently completed our NIST 800-171 assessment! As such, our 2023 NIST 800-171 report is now available.
We're pleased to announce that we recently completed our ISO 27001, ISO 27701, and SOC 2 audits for 2023. Our updated ISO certificate and SOC 2 Type 2 report are now available in Expel's Trust Center.
If you think you may have discovered a vulnerability, please send us a note.