Recidiviz has implemented best-in-class security practices to keep customer data safe. We take great care to protect all data that we work with, as well as to protect the privacy of those who provide the data and whose information may be included in the data.
CJIS
Recidiviz is compliant with CJIS requirements that all staff with access to CJI undergo Level 4 CJIS security training and necessary background checks. Additionally, Recidiviz's product, corporate, and cloud environment are built to comply with CJIS requirements.
SOC 2
Recidiviz has successfully completed a Service Organization Control 2 (SOC 2) Type 2 audit for its hosted services.
HIPAA
Recidiviz's security program conforms to HIPAA security requirements for its hosted services and corporate environment. All Recidiviz employees are trained in maintaining the confidentiality, integrity, and availability of protected health information (PHI).
Secure Cloud Infrastructure
Recidiviz heavily leverages GCP's Platform-as-a-Service (PaaS) offerings, meaning that GCP manages the underlying infrastructure of Recidiviz's entire product suite. Google has attested that all infrastructure in Recidiviz's product infrastructure is compliant with ISO 27001, FedRAMP, HIPAA, and NIST 800-53, to name a few. Details about GCP's compliant and secure infrastructure can be found here: https://cloud.google.com/security/compliance/offering
2023 SOC 2 Type 2 Report is now available
We are excited to announce that the latest SOC 2 report for Recidiviz is available in the Recidiviz product portal section! This report was conducted by a 3rd party auditor and covers September 2022 - September 2023. Please review the full report here:
https://app.safebase.io/portal?itemUid=f4951085-df2e-4fac-9d43-60b796478b2e&source=documents_card
2023 Penetration Test Report for Workflows
We are excited to announce that the latest third-party pentest report for Recidiviz's Workflows product is available in the Recidiviz product portal section.
2023 Penetration Test Report for Justice Counts Product
We are excited to announce that the latest third-party pentest report for Recidiviz's platform is available in the Recidiviz product portal section! The report covers Recidiviz's suite of end-user applications. Please review the full report here:
Updated SOC 2 Report Available
We are excited to announce that the latest SOC 2 report for Recidiviz is available in the Recidiviz product portal section! This report was conducted by a 3rd party auditor, and covers August 2021 - August 2022. Please review the full report here:
Updated Pentest Report for Recidiviz
We are excited to announce that the latest third-party pentest report for Recidiviz's platform is available in the Recidiviz product portal section! The report covers Recidiviz's suite of end-user applications. Please review the full report here: