Compliance

If your organization has to answer to regulators or auditors, BridgeApp is built with you in mind. It’s designed to meet the data-protection rules and security standards that regulated industries live by. This page summarizes where things stand and where to go for specifics.

Standards alignment

• GDPR — BridgeApp is built to be GDPR-compliant, supporting the data-protection and privacy expectations of teams operating in or serving the EU.
• ISO — BridgeApp is built to align with ISO information-security practices.
• SOC 2 — BridgeApp is built to align with the SOC 2 trust principles around security and data handling.

Note

“Aligned with” describes how BridgeApp is designed and operated against these standards. For the current status of formal certifications, audit reports, and region-specific attestations, ask your account manager or contact the team — they can share the latest documentation under the appropriate agreements.

What Enterprise adds for compliance

The Enterprise plan is where the heaviest compliance needs are met:

• On-premise and private-cloud deployment for full data residency and control.
• BYOK (bring your own keys) so your organization holds its own encryption keys.
• A dedicated account manager and priority support to handle security reviews, questionnaires, and custom agreements (such as data-processing agreements).
• White-labeling and SLA-backed uptime.

Getting documentation

Security and compliance reviews usually come with a questionnaire and a request for documentation. The fastest path is to talk to the team directly — the Enterprise account manager exists precisely to support these conversations and provide the right paperwork for your situation.

Related

• Security overview
• Deployment & data residency
• Privacy & encryption
• FAQ