LastPass Achieves SOC 2, SOC 3 and C5 Compliance Standards

We know third-party validation of the security and reliability of our solutions is important to our current and potential customers. We are thrilled to share that LastPass has achieved several security compliance certifications including SOC 2 Type II, SOC 3 Type II, and C5 examinations.

SOC2 and SOC3 examinations are a review of the controls and processes that affect the security of LogMeIn products and infrastructure, the availability of the systems used to process data, and the confidentiality of the information processed by the systems.

Of note for our customers in Germany, LastPass has also completed the Cloud Computing Compliance Controls Catalogue (C5) from the German Federal Office for Information Security. This certification defines which controls cloud providers must comply with or which minimum requirements the cloud providers should be obliged to meet. An important cornerstone in cloud security for the German market, only a few cloud providers are certified.

In addition to these security standards, we also are excited to share the new LogMeIn Trust & Privacy Center! This new site provides a centralized resource across LogMeIn products to find information including:

  • Our Commitment to Privacy certified through the EU-US and Swiss Privacy Shield and TRUSTe Verified Privacy Frameworks
  • LogMeIn’s Security Measures and globally trusted third-party security certifications such as SOC2, SOC3, and C5
  • Specific Product Information including current system performance and the security and privacy features for each

Customers can download a copy of the SOC 3 report on the Trust & Privacy Center, here:

The SOC 2 and C5 reports are available under Non-Disclosure-Agreement, upon request. Please contact your sales representative.

Investing in security and compliance is a constant focus for LogMeIn and LastPass, and we are excited to offer the latest on security, compliance and system performance information.