Hootsuite

Hootsuite

Search the Trust Center...
Ctrl +K

Hootsuite | Trust Center

Everything you need to complete your security review is here. Browse documents, certifications, and compliance details with confidence. Our Trust Center is regularly updated to reflect the latest audit results, and subprocessor disclosures.


Our Philosophy

Welcome to Hootsuite’s Trust Center!

This is a centralized hub for all things related to security, privacy, compliance at Hootsuite. We want to make it easier for you to access the information you need to feel confident in how we protect your data and maintain compliance with global standards.

Our approach to security and data privacy is built on industry best practices and is supported by a comprehensive set of internal controls, risk management processes, and ongoing assessments. To provide independent assurance of our security and privacy practices, we maintain multiple globally recognized certifications and undergo regular third-party audits — including SOC 2 Type II audits, ISO certifications (27001, 27017, 27018, and 27701), FedRAMP Authorization, and UK Cyber Essentials.

To stay informed of updates to our security and privacy program, please click on the subscribe button at the top of this page.


Announcements

Hootsuite update on Salesforce Gainsight breach

Hootsuite was recently made aware of a security incident involving Salesforce/Gainsight which resulted in the compromise of authentication tokens for a subset of Gainsight customers.

Upon notification, Hootsuite’s Security Team immediately revoked the affected integration token and launched a forensic investigation. Our review of system and access logs confirmed that although an unauthorized party attempted initial connectivity checks, no customer data, proprietary information, or sensitive records were accessed or exfiltrated.

We have completed all necessary credential rotations and verified the integrity of our system. No action is required from Hootsuite customers at this time.

If you have any questions, please reach out to security@hootsuite.com.


Advisory: Fake GitHub Repositories Posing as Trusted Sources

Hootsuite has identified a phishing campaign that uses fake GitHub repositories and Search Engine Optimization (SEO) manipulation to target macOS users and entice them to download malware.

This activity is not the result of any compromise of Hootsuite systems, it arises from the fraudulent use of the Hootsuite name. Hootsuite is actively reporting these malicious repositories to GitHub and continues to monitor for similar threats.

Users are advised to avoid interacting with or downloading content from unverified third-party links. Suspicious communications claiming to be from Hootsuite can be forwarded to security@hootsuite.com for verification.


Hootsuite update on Salesforce-Drift breach

Hootsuite was made aware of the Salesloft Drift breach which resulted in attackers stealing authentication tokens, and Salesforce data from certain Salesloft's customers. Following a thorough security review, Hootsuite determined that our systems, data, and customers are not affected by this incident.

For any further questions, please reach out to security@hootsuite.com.



Compliance

ccpa
CCPA
CSA STAR 1
CSA STAR 1
fedramp-li-saas
FedRAMP Li-SaaS
gdpr
GDPR
pci
PCI

Trusted by

Adobe
Calm
City of Boston
Teva Pharmaceuticals
University of Miami
Bacardi Limited
Live Nation
Melia Hotels International
Diabetes Canada
MAPFRE

Documents & Knowledge Base FAQs


Featured Documents

Powered by Conveyor, the first end-to-end customer trust platform.
Learn more