Trust Centre Get details about DFIN’s security, privacy, compliance, resiliency, and the latest product security information. Trust begins with transparency Our mission is to build our products and services with security, privacy, compliance, and resiliency in mind. That’s why we created the Trust Centre: to give you access to the latest information when you need it. Security Protect your data's integrity, availability, and confidentiality Explore DFIN security products and services Report a security issue Learn more Privacy See how DFIN protects and respects individuals' privacy View data protection guidelines Explore global compliance data protection laws Learn more Compliance Request compliance certificates Global offerings (ISO/IEC, SOC, Bridge Letters, BSI, etc.) Local and industry-specific certificates Learn more Security Matters From the desk of the CISO DFIN white papers Knowledge Hub Current threat landscape Learn more Compliance you can trust ActiveDisclosure View our white paper detailing ActiveDisclosure's comprehensive security and privacy programs. Learn more Venue View our white paper detailing Venue's comprehensive security and privacy programs. Learn more Arc Suite® View our white paper detailing Arc Suite's comprehensive security and privacy programs. Learn more We can provide additional information including our SOC 2 Type II report, once a Non-Disclosure Agreement is signed Talk to an expert or call +44 203 047 6100 WHITE PAPER How to secure today’s digital workplace CISOs play a critical role in today's digital workplace, guiding executive leadership teams on how to align cybersecurity initiatives with business objectives. Download white paper From the desk of the CISO Led by Dannie Combs CISO & CNBC Technology Executive Council Member Security is integral to global operations Our information security program is an integral part of our global operations. Over 10,000 businesses trust DFIN to safeguard their data. Our program is subject to annual independent audits for compliance and industry standards certifications, ensuring that our program not only meets but exceeds the most stringent of security requirements. Data privacy is a top priority Protecting our customer’s data privacy is a top priority. DFIN understands the importance of protecting the critical business and personal information entrusted to DFIN. We’re also committed to the General Data Protection Regulation (GDPR) compliance and have bolstered our already-strong data protection practices by evaluating and updating our company privacy policies and practices. Meeting and exceeding compliance standards DFIN is committed to achieving and maintaining the trust of our customers. Our data governance standards, policies, and procedures are informed by a full range of factors, including continuous monitoring of the security and privacy landscape to ensure our approach remains in step and complies with the latest state, federal, and international requirements. Security matters Our mission is to build our products and services with security, privacy, compliance, and resiliency in mind. That’s why we created the Trust Centre: to give you access to the latest information when you need it. DFIN AND MORNING CONSULT RESEARCH DealMaker Meter Cybersecurity Edition 69% of enterprise leaders say the risk outweighs the rewards of storing detailed data. Find out why and gain other valuable insights. Download report How does DFIN protect their client’s data? DFIN leverages several technologies, processes, and procedures to ensure customer data remains secure. MFA (multi-factor authentication), data encryption in transit and at rest, EDR (Endpoint Detection and Response), antivirus and malware protection, robust access controls (based on least privileged access), and Network perimeter security to ensure comprehensive data protection for our clients. What about application security? DFIN leverages a Secure Software Development Life Cycle process (SSDLC) whereby security is incorporated into all stages of the software development life cycle. Static code analysis (SAST), Dynamic application scanning (DAST), continuous vulnerability scanning, secure software release management, software architecture reviews, and annual independent penetration testing contribute to DFIN's application security practice. How large is the Cybersecurity team at DFIN? DFIN’s security team is made up of approximately 40 team members spread across several functional teams including Application Security, Cyber Threat Intelligence, Identity and Access Management, Security Architecture, Network Security, IT GRC (Governance, Risk, Compliance), Supply Chain Security, and Cyber Awareness and Advocacy, all under the leadership of our CISO, Dannie Combs. Additionally, DFIN partners with third-party security providers for 24x7 security monitoring and incident response. Where can I learn more about product security, privacy, and compliance at DFIN? Simply click the “Talk to an expert” button and we will be in touch! Blog from the CISO Shining a Light on Dark Data Learn more about how DFIN protects our clients and employees from ransomware and phishing with advanced technology products, enhanced security features, and required employee training. Read the blog More findings, right this way Resources The Top Trends in Corporate Financial Reporting December 2024 View resource Fact Sheet Confidently Comply with Form PF Requirements with DFIN’s All-in-One ArcRegulatory® Solution December 2024 View fact sheet Resources IPO Readiness Checklist: Are You Prepared to File? December 2024 View resource Case study How We Help a Global Law Firm Streamline Their Client IPO Process November 2024 Read case study Article Investment Companies 2025 Outlook November 2024 | Eric Johnson Read article Calendar 2025 Investment Companies Regulatory Calendar November 2024 View calendar Fact Sheet Drive Efficiency and Mitigate Risk with Purpose-Built Content Management Software November 2024 View fact sheet Resources How To Optimize the Investor Onboarding Process November 2024 View resource Blog DFIN's Software Success Continues in Third Quarter November 2024 | Craig Clay View blog Case study How We Helped a Leading Enterprise Finance Management Company Streamline its IPO Process October 2024 Read case study White paper ESEF Annual Reporting Inline XBRL Explained October 2024 Read white paper Resources AI In Financial Reporting October 2024 View resource Case study How We Helped a Medical Technology Company Collaborate on Proxy Statements October 2024 Read case study Case study How We Helped a Global Software Company Save Time & Money on SEC Filings and Statutory Reporting October 2024 Read case study White paper How to Move From Voluntary to Regulated ESG Reporting - 3 Recommendations October 2024 Read white paper Resources What Is a Proxy Statement? October 2024 View resource Resources Compensation Discussion and Analysis (CD&A) Guidelines October 2024 View resource Case study How We Helped a Global Investment Bank Drive Secure Collaborations & Data Sharing Worldwide October 2024 Read case study Resources CSRD Readiness: Key Steps and Challenges for Compliance October 2024 View resource Case study How We Helped Hummingbird Bioscience Modernize its Financial Reporting Workflow with ActiveDisclosure October 2024 Read case study