SpoofSentrySpoofSentry
← Back to Trust Center

Enterprise Procurement Pack

Request available security, legal, and procurement documentation for vendor review. All documents are versioned and dated. Some materials are currently planned and not yet available.

Need everything at once?

Request all available procurement documents and we'll send them to your inbox.

Request Available Pack

Security

Security Overview

PDF

Architecture summary, encryption, authentication, authorization, audit logging, and incident response overview.

v1.2 · Updated 2026-04-01

Architecture Summary

PDF

Component diagram, data flow, deployment topology, and infrastructure details.

v1.1 · Updated 2026-03-29

Shared Responsibility Model

PDF

Defines security responsibilities between SpoofSentry and customers across all layers.

v1.1 · Updated 2026-04-16

Penetration Test Summary

PDF

Executive summary of penetration test findings and remediation status.

Planned

Legal

Data Processing Agreement (DPA)

PDF

Standard DPA template compliant with GDPR, CCPA, and applicable data protection regulations.

v1.0 · Updated 2026-04-16

Compliance

CAIQ / SIG Lite Responses

XLSX

Pre-completed Consensus Assessments Initiative Questionnaire and SIG Lite responses.

v1.0-draft · Updated 2026-04-16

Retention & Deletion Policy

PDF

Data retention schedules by plan tier, deletion procedures, and legal hold capabilities.

v1.1 · Updated 2026-04-01

SOC 2 Type II Report

PDF

Independent third-party audit report covering security, availability, and confidentiality trust service criteria. SOC 2-aligned evidence bundles are available now; independent report not yet available.

Planned

Operations

Business Continuity Summary

PDF

Continuity and recovery practices, backup approach, incident response, and customer responsibilities.

v1.1 · Updated 2026-04-16

Frequently Asked Questions

How do I access procurement documents?

Available procurement documents can be requested from our team and shared by email. Some materials may require additional review before sharing.

Do you provide a SOC 2 report?

An independent SOC 2 Type II report is not yet available. Where appropriate, we can provide SOC 2-aligned evidence materials on request.

Can I get a custom NDA or DPA?

Yes. We provide a standard DPA and can review reasonable customer paper through our legal process. Contact [email protected].

Do you support direct self-serve downloads?

Not at this time. Procurement materials are currently shared through a managed request workflow.

Do you support data residency requirements?

Our primary infrastructure is in the US. For specific data residency requirements, contact us to discuss available options.

How often are these documents updated?

All documents are versioned with date stamps and reviewed quarterly. Material changes are communicated to existing customers.

Need help with your vendor assessment?

[email protected]
Procurement Pack | SpoofSentry Trust Center | SpoofSentry