LIVEPERSON security and PrivacyGlobally trusted by enterprises

For 20+ years, LivePerson has made the security and protection of data our priority. We manage LivePerson’s systems, applications, and infrastructure, and our customer’s data with a robust security program and led by an advanced security team.

LivePerson security lock illustration

Trusted by thousands of brands worldwide

David's Bridal logoHSBC logo small

A few highlights of our robust security program include:

Regular vulnerability testing

Operating systems are hardened, and we regularly test the infrastructure for potential vulnerabilities, both internally and externally by independent third parties, including through our formal Vulnerability Disclosure Policy and Program.

See the details

Disaster recovery

LivePerson maintains a disaster recovery and business continuity plan aligned with industry practices.  All data centers provide N+1 or greater UPS and cooling power.

Protecting customer data

From available masking and encryption of data at rest to Firewalls, ACLs, Load Balancers, and DDoS protection technology, we protect your data.

Compliance and security certifications

LivePerson is committed to being a trusted partner, and we meet the most relevant international security and privacy standards.

SSAE 18 SOC2+HIPAA (formerly SAS70)

We conduct yearly data center audits and our reporting is compliant with the American Institute of Certified Public Accountants (AICPA).

ISO 27001

Our Information Security Management System is aligned with the ISO 27001 standard.

PCI DSS 4.0

We handle payment data and secure transactions in compliance with Payment Card Industry Data Security Standards 4.0.

GDPR

Our data and privacy policies are in full compliance with EU General Data Protection Regulation.

SOX

Our finance and security operations are compliant with all Sarbanes-Oxley requirements.

HIPAA via Business Associate Agreement (BAA)

LivePerson executes BAAs with HIPAA-covered entities to certify PHI protections.

HITRUST

LivePerson is audited against the HITRUST Common Security Framework to validate robust security protections for our customers, including HIPAA-covered entities.

For additional information about our data privacy resources please view our GDPR & Data Privacy page here