HashiCorp has achieved SOC 2 Type I compliance for multiple products including Terraform Enterprise, Vault Enterprise, Consul Enterprise, Nomad Enterprise, and Terraform Cloud, demonstrating its commitment to customer trust and security. The company's security team collaborates with product and engineering teams to ensure products are designed with both security and customer data protection in mind. HashiCorp has implemented industry best practices for controls and processes, including security awareness training, internal threat models, external penetration testing, vulnerability management, and endpoint management. An external audit by a third-party against the AICPA Trust Service Principles validated HashiCorp's commitment to earning and maintaining customer trust, with plans to pursue SOC 2 Type II and ISO 27001 compliance in the future.