SaaS Compliance & Security Questionnaire
General Information
Company Name
Product/Service Name
Contact Person
Contact Email
Compliance
Which compliance certifications or attestations does your organization have?
Does your SaaS follow any data protection regulations (e.g., GDPR, CCPA)?
Data Security
How is customer data stored and protected?
Is data encrypted in transit and at rest?
Yes
No
Access Control
Describe your user authentication methods
Can customers manage user permissions and roles?
Yes
No
Incident Response
Do you have an incident response plan?
Yes
No
Describe your data breach notification process
Vendor Management
Do you use third-party vendors to process data?
Yes
No
If yes, how do you assess and manage their risk?
Additional Comments
Other relevant security & compliance information