Trust Center

Start your security review
View & download sensitive information
Search items

Overview

Welcome to Thoropass's Security and Privacy Portal. Our commitment to security and data privacy is embedded in every part of our business. Use this portal to learn about our security and privacy posture as well as request access to our security and privacy documentation.

Compliance

AWS Qualified Software Logo
AWS Qualified Software
CCPA Logo
CCPA
CPRA Logo
CPRA
EU-US DPF Logo
EU-US DPF
GDPR Logo
GDPR
ISO 27001 Logo
ISO 27001
ISO 27001 SoA Logo
ISO 27001 SoA
ISO 27701 Logo
ISO 27701
PCI DSS Logo
PCI DSS
SOC 2 Logo
SOC 2
APEC PRP Logo
APEC PRP
HITRUST Logo
HITRUST
ISO 9001 Logo
ISO 9001
Start your security review
View & download sensitive information

Thoropass is reviewed and trusted by

Feathr-company-logoFeathr
Finotta-company-logoFinotta
interVal-company-logointerVal
Data Protection Impact Assessment (DPIA)
EU-US DPF Certified
Network Diagram
Pentest Report
Security and Privacy Whitepaper
SOC 2 Report
System Security Plan
AWS Qualified Software
CCPA
CPRA
EU-US DPF
GDPR
ISO 27001
ISO 27001 SoA
ISO 27701

Risk Profile

Data Access LevelRestricted
Impact LevelModerate
Recovery Time Objective8 hours
View more

Product Security

Audit Logging
Data Security
Integrations
View more

Reports

Data Protection Impact Assessment (DPIA)
EU-US DPF Certified
HIPAA Report
View more

Data Security

Access Monitoring
Backups Enabled
Data Erasure
View more

App Security

Responsible Disclosure
Bot Detection
Code Analysis
View more

Data Privacy

Cookies
Data Breach Notifications
Data Into System
View more

Access Control

Data Access
Logging
Password Security

Infrastructure

Amazon Web Services
Anti-DDoS
BC/DR
View more

Endpoint Security

Disk Encryption
DNS Filtering
Endpoint Detection & Response
View more

Network Security

Data Loss Prevention
Firewall
IDS/IPS
View more

Corporate Security

Asset Management Practices
Email Protection
Employee Training
View more

Policies

Acceptable Use Policy
Access Control Policy
Anti-Malicious Software Policy
View more

Security Grades

Qualys SSL Labs
Thoropass.com
A
App.Thoropass.com
A+
Security Headers
Thoropass.com
A
App.Thoropass.com
A

Trust Center Updates

Updated the Data Protection Impact Assessment (DPIA) / Privacy Impact Assessment (PIA)

GeneralCopy link

We have just performed our annual review and update of our Data Protection Impact Assessment (DPIA). There were no significant changes.

If you should have any questions or need any additional information, please don't hesitate to contact us. The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

2023 SOC 2 Type II Report Available

ComplianceCopy link

Thoropass takes security and privacy seriously. We are excited to announce we have received our finalized 2023 SOC 2 Type 2 Report. If you don't already have access, you can request access through our Trust Center.

-The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

ISO 27001/27701 Certifications

ComplianceCopy link

We are now ISO 27001 Information Security Management System and ISO 27701 Privacy Information Management System Certified. Our certifications are now available on our trust center for review.

If you should have any questions or need any additional information, please don't hesitate to contact us. The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

Updated DPIA/Added Subprocessor

SubprocessorsCopy link

We have just updated our Data Protection Impact Assessment (DPIA) to include the addition of a new subprocessor.

If you should have any questions or need any additional information, please don't hesitate to contact us. The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

Updated DPIA/Added Subprocessor

SubprocessorsCopy link

We have just updated our Data Protection Impact Assessment (DPIA) to include the addition of a new subprocessor.

If you should have any questions or need any additional information, please don't hesitate to contact us. The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

Updated the Data Protection Impact Assessment (DPIA) / Privacy Impact Assessment (PIA)

ComplianceCopy link

We have just updated our Data Protection Impact Assessment (DPIA) to address our adherence to the EU-US DPF Principles for data transfers to the US.

If you should have any questions or need any additional information, please don't hesitate to contact us. The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

EU-US DPF Certification

ComplianceCopy link

We are now certified under the EU-U.S. Data Privacy Framework.

Thoropass complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Thoropass has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. Thoropass has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/

Published at N/A

Added Subprocessor

SubprocessorsCopy link

We have just added a new subprocessor (Zelta).

If you should have any questions or need any additional information, please don't hesitate to contact us. The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

Updated DPIA/Added Subprocessor

SubprocessorsCopy link

We have just updated our Data Protection Impact Assessment (DPIA) to include the addition of a new subprocessor.

If you should have any questions or need any additional information, please don't hesitate to contact us. The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

Official Name Change

GeneralCopy link

We have officially changed our name from Laika, Inc. to Thoropass, Inc. We have updated our Trust Center to reflect this name change along with making some minor status updates to current implementation of controls on our Trust Center.

If you should have any questions or need any additional information, please don't hesitate to contact us.

Published at N/A

Updated Self-Assessment Reports (CCPA and GDPR), Network Diagram, and Subprocessors

SubprocessorsCopy link

We added two (2) new documents to our trust center: CCPA Self-Assessment Report and GDPR Self-Assessment Report. We also updated our new infrastructure/network diagram to reflect our rebranding activities and current configurations. Finally, we updated our subprocessor list with two (2) subprocessors: Datadog and Okta.

If you should have any questions or need any additional information on this update to our Trust Center, please let us know. -The Thoropass Security and Privacy Team privacy@thoropass.com

Published at N/A

Rebrand

GeneralCopy link

We are ecstatic to announce Laika is now Thoropass.  We may have a new name and dazzling new look, but Thoropass still exists to change how the world sees compliance and build a space where compliance is a good thing.  We have moved our Trust Center to https://trust.thoropass.com to better exemplify our commitment to keeping our customer’s information secure and private as well as maintain the trust you have in our new brand.  Our portal still permits the ability to request access to our compliance documents, review our standardized questionnaires, and gain a general understanding of our security and privacy posture. 

If you should have any questions or need any additional information on this update to our Trust Center, please let us know.

-The Thoropass Security and Privacy Team.

privacy@thoropass.com 

Published at N/A

Updated the Data Protection Impact Assessment (DPIA) / Privacy Impact Assessment (PIA)

GeneralCopy link

We just updated our Data Protection Impact Assessment (DPIA) / Privacy Impact Assessment (PIA) to refresh the data flow diagram due to removing a sub-processor no longer being used. Also, updated information on our mobile device management solution roll-out and minor configuration setting change.

If you should have any questions or need any additional information please don't hesitate to contact us. -The Laika Security and Privacy Team privacy@heylaika.com

Published at N/A

2022 SOC 2 Type 2 Report Available

ComplianceCopy link

Laika takes security and privacy seriously. We are excited to announce we have received our finalized 2022 SOC 2 Type 2 Report. If you don't already have access, you can request access through our Security and Privacy Trust Center.

-The Laika Security and Privacy Team privacy@heylaika.com

Published at N/A

Welcome

GeneralCopy link

Laika takes security and privacy seriously. We are excited to announce the official launch of Laika's Security and Privacy Trust Center. By using this portal, you can request access to our compliance documents, review our standardized questionnaires, and gain a general understanding of our security and privacy posture. Over time, our team will be making changes to this portal as we implement new tools and processes in our environment. You can use the Subscribe button to receive email notifications when our team has an important update we want to share.

We do want to inform you that we have updated our sub-processor list to ensure it is current. This list is located here: Sub-processors.

If you should have any questions or need any additional information on these updates or our Security and Privacy Trust Center, please let us know.
-The Laika Security and Privacy Team.
privacy@heylaika.com

Published at N/A
Powered bySafeBase Logo