Compliance standards
LastPass has achieved the following third-party security compliances:
- SOC2 Type II
- SOC3
- BSI C5
- ISO/IEC 27001:2013
- APEC CBPR and PRP Privacy Certification
- TRUSTe Enterprise Privacy Certification
LastPass is dedicated to monitoring and continuously improving our security, technical and organizational measures to better protect your sensitive Customer Content. We constantly evaluate industry standard practices regarding technical data privacy and information security and strive to meet or exceed those standards. Our security programs are comprehensive and dedicated to all facets of security.
Alongside our stringent internal security controls, we hold the following trusted third-party security certifications. As part of our commitment to our subscribers, we conduct SOC 2 (type II) audits and share a SOC 3 report, a shareable version of SOC 2. SOC3 report can be found and downloaded here.