Trust Center

Start your security review
ControlK

Overview

Welcome to The Model N Trust Center. Within this Trust Center, you’ll find information about our security governance, data protection practices, compliance posture, and operational safeguards.

Our security program is anchored in globally recognized standards, including SOC and ISO frameworks. These standards guide how we manage risk, monitor our environment, and continuously improve our controls. Through regular assessments, independent audits, and ongoing oversight, we work to ensure our practices align with recognized expectations for confidentiality, availability, and integrity.

Compliance

SOC 1 Type 2 Logo
SOC 1 Type 2
SOC 2 Type 2 Logo
SOC 2 Type 2
CSA STAR Level 1 Logo
CSA STAR Level 1
CSA STAR Level 2 Logo
CSA STAR Level 2
ISO/IEC 27001:2022 Logo
ISO/IEC 27001:2022
EU-US DPF Logo
EU-US DPF
UK Extension to EU-US DPF Logo
UK Extension to EU-US DPF
Swiss-US DPF Logo
Swiss-US DPF
TRUSTe Logo
TRUSTe
Standard Contractual Clause (SCC) Logo
Standard Contractual Clause (SCC)

Documents

Featured Documents

COMPLIANCESOC 1 Type 2
COMPLIANCESOC 2 Type 2
REPORTSMBS SOC 1 Reports
COMPLIANCEISO/IEC 27001:2022

Model N is reviewed by

Planet 9 Inc.-company-logoPlanet 9 Inc.
Booz Allen Hamilton-company-logoBooz Allen Hamilton
A-LIGN-company-logoA-LIGN
CyberGuard Compliance-company-logoCyberGuard Compliance
Tevora-company-logoTevora

Reports

SOC 1 Type 2
SOC 2 Type 2
MBS SOC 1 Reports

Data Security

Data Backups
Physical Security
Encryption-at-rest
View more

App Security

Application Penetration Testing
Code Analysis
Credential Management
View more

ESG

Anti-Bribery and Corruption
Code of Ethics
Community Involvement
View more

Legal

SubprocessorsAmazon Web Services (AWS)-company-logoSalesforce-company-logoOracle-company-logoProvectus-company-logoSoftServe-company-logo
Cyber Insurance
Data Processing Agreement
View more

Data Privacy

Cookies
Data Breach Notifications
Employee Privacy Training

Access Control

Internal Single-Sign-On (SSO)
Logging
Password Security
View more

Infrastructure

Status Monitoring
Environment Segregation
Separate Production Environment
View more

Endpoint Security

Anti-Malware
Disk Encryption
Software Firewall
View more

Network Security

Firewall
Network Penetration Testing
Security Information and Event Management
View more

Corporate Security

Employee Handbook
Employee Training
Internal SSO
View more

BC/DR

Alternate Processing/Storage Site
Business Continuity Plan (BCP)
Data Backup/Backup Protection
View more

Training

Employee Privacy Training
Phishing Training
Security Awareness Training
View more

Product Security

Audit Logging
Data Security
SSO Support

Asset Management

IT Asset Management (ITAM) Program
Secure Asset Disposal
Asset Classification
View more

Physical & Environment

Visitor Control
Alternate Work Sites
Fire Protection
View more

AI

AI Governance
Responsible AI Statement
Third-Party AI Diligence

Incident Response

Incident Reporting Process
Designated Response Personnel
Security Operations Center (SOC)

Risk Management

Risk Assessments
Data Access/Impact Levels
Supply Chain Risk Management

Continuous Monitoring

Security Information & Event Management (SIEM)
Automated Alert Response

Subprocessors

Trust Center Updates

Model N Not Impacted by Gainsight Security Incident

Copy link
Incidents

Model N became aware of the Gainsight-related security activity shortly after Salesforce and multiple threat intelligence outlets reported unusual OAuth activity tied to applications published by Gainsight that were connected to customer Salesforce environments.

Recommended: Salesforce Security Advisory: provides an overview of the reported unusual activity and outlines recommended actions for customers using Gainsight integrations.

Model N Not Impacted by Salesloft-Drift Incident

Copy link
Incidents

Model N became aware of the Salesloft-Drift security incident shortly after news reports were released regarding the compromise.
Threat intelligence sources and news outlets reported that this incident impacted customers of the Drift product, produced by Salesloft, who had the Drift integration enabled within Salesforce.

Recommended: Widespread Data Theft Targets Salesforce Instances via Salesloft Drift, Google Threat Intelligence Group

Built onSafeBase by Drata Logo