Trust center

Accelerate business outcomes with a foundation of trust

Our commitment to building trust

Collibra is committed to the security of our software and infrastructure. Security plays a vital role in our organizational structure, software delivery, training programs and hiring processes. It is also a cornerstone of account controls, audits and the services we provide to customers.

Overview

Compliance

We undergo independent third-party audits aligned with industry-leading standards and frameworks.

Security

We maintain a rigorous security framework that spans our operations, product development and product deployment practices.

Privacy

We continuously evaluate global and local privacy regulations so that we can ensure data protection compliance with applicable governing regulations.

Responsible AI

We are committed to the responsible development and use of AI and maintain a robust AI governance program to ensure our transparency and integrity in AI innovation.

Reliability

Our products are built with performance, scalability and availability in mind so that you can confidently implement your data programs.

Environmental, social and governance (ESG)

Collibra actively engages in a variety of sustainability and diversity initiatives to ensure we respect global resources and take advantage of a diverse array of resources and partners.

Compliance

ITAR

ISO/IEC 27001

FedRAMP Moderate

HIPAA

GDPR requirements

CCPA requirements

SOC 1

SOC 2

Compliance

An approach you can trust

Collibra delivers an integrated approach to data intelligence that is built on a foundation of transparency and trust.

Collibra adheres to a centralized control framework that incorporates COSO, COBIT, NIST, GDPR, and CCPA standards. Collibra holds multiple certifications and attestations that demonstrate our strong control environment, including: SOC 1, SOC 2, ISO 27001, ISO 27017 (Cloud Security), ISO 27018 (Privacy), FedRAMP (US Government), ITAR (International), HIPAA (Healthcare) and TISAX (German Automotive).

Security
Security

Security is in our DNA

Security is vital to everything we do and plays a key role in how we build and deliver our platform. We’re committed to the security of our software and infrastructure, and it is foundational to the account controls, audits, and services we provide to our customers.

Read the security and compliance factsheet

Operations

Collibra screens all employees prior to hiring using third-party experts, and all employees take security training as required by role.

Product

Collibra Data Intelligence Platform is designed to ensure the security of user and enterprise data. We implement identity and access management, encryption, and network vulnerability testing to ensure your data and your environment stays secure.

Cloud

Collibra can be deployed across multiple industry-leading public clouds to ensure platform security and stability. Collibra also aligns with the Cloud Security Alliance Star Program and we publish our CSA self-assessment on the Registry.

Collibra is committed to delivering a secure platform and products

If you believe you have discovered a security vulnerability in Collibra’s platform, products or web applications, please report this to us right away. We welcome security researchers, developers and anyone with good intentions.

Collibra bug bounty program rules

Customers

If you are a customer and need to report a vulnerability, please submit a ticket in our Support Portal.

Visit our Support Portal

Non-customers

If you are not a current customer and need to report a vulnerability, please email us with the details.

Email us

Privacy
Privacy

Business-wide privacy controls

Collibra is committed to ensuring data privacy compliance and upholds principles of data protection at all times. Collibra’s privacy-by-design program, data protection framework and contractual commitments to customers ensure that our customers can trust that Collibra will process their personal data appropriately, fairly and lawfully.

Explore our policy center

Privacy and the Collibra Data Intelligence Platform

Collibra takes privacy and personal data protection seriously. As a global organization, we comply with applicable global privacy regulations. We conduct our business and design our products and services to protect personal data.

The following documentation addresses how we process the personal data with which our customers entrust us.

Transfer impact assessments (TIAs) available to customers upon request.

Privacy Policy Customer Data Processing FAQs Data Processing Addendum List of Subprocessors

Binding Corporate Rules for Processors (BCRs) and global privacy transfers

In December 2023, the Belgian Data Protection Authority approved Collibra’s Binding Corporate Rules for Processors (BCRs), which represent a detailed code of conduct that governs the processing and international transfer of personal data to safeguard customer data across all Collibra entities. BCRs are considered the gold standard for data protection, and this approval validates Collibra’s robust privacy practices with respect to processing its customers’ personal data.

Where appropriate, Collibra will also continue to offer our customers the ability to transfer their personal data pursuant to Standard Contractual Clauses based on the European Commission's Standard Contractual Clauses (Decision 2010/87/EU). Further, Collibra adheres to the EU-US Data Privacy Framework (DPF) as well as the UK and Swiss corollary frameworks, to enable global data transfers.

Collibra’s Binding Corporate Rules for Processors (BCRs)

Responsible AI
Responsible AI

AI products that balance innovation and accountability

We have embraced the responsible deployment of artificial intelligence in our products and services, including Collibra AI Governance, to maximize outcomes and value to our customers. Responsible AI governance means that we must offer these new services with transparency and accountability.

We developed a set of frequently asked questions (FAQs) and factsheets that detail how we leverage AI responsibly in our products and services.

Review our AI FAQs Asset recommender Data classification on Edge Data similarity Use of generative AI for DAX analysis Use of generative AI for DQ SQL assistant Use of generative AI to generate descriptions for assets

Reliability
Reliability

Resiliency for ongoing business operations

We know that system status and uptime are critical factors for our customers. We build our products with performance, scalability and availability in mind, and publish a dashboard so that customers can see the status of their environment.

View the status dashboard

Backups

The cloud architecture used by Collibra includes independent hardware restoration and recovery, enabling us to perform backup and recovery operations.

Business continuity

Collibra has established disaster recovery and business continuity plans to ensure our platform remains reliable and recoverable.

Resiliency

We perform resilience testing across our cloud providers and have implemented restoration procedures. We have also tested backup to ensure recovery in the event of disruptive incidents.

ESG
Environmental, social and governance (ESG)

Collibra is committed to making a positive impact on the world

Our dedication to ESG initiatives drives our business decisions and actions, guiding us to create a sustainable, ethical and responsible future.

Explore our ESG initiatives

Ready to do more with trusted data?
Get started today.