Security & Compliance

Protect your customers’ data, reduce risk, and ensure secure, scalable access to parcelLab products.

Overview

At parcelLab, security and compliance are built into everything we do. Our platform is independently audited, continuously monitored, and aligned with leading global standards to protect customer data, ensure regulatory readiness, and give enterprises confidence in the resilience of their digital operations.

parcelLab is SOC 2 Type II certified through audits by Prescient Assurance, confirming controls for security, availability, confidentiality, and processing integrity. We are also HIPAA compliant to protect health data, with letters of attestation available on request. To validate defenses, we conduct annual penetration tests on backend and frontend systems with Cognition Team, following OWASP standards.

Security doesn’t stop with yearly audits. We use continuous compliance monitoring tools to track access rights, asset inventories, and evidence collection every day. This gives customers assurance that controls are not only documented but actively enforced across our operations.

Our privacy program covers both GDPR and CCPA, led by our Data Protection Officer at ePrivacy GmbH. Data is encrypted in transit and at rest, and limited by contractual controls to prevent unauthorized transfers. Employees receive mandated privacy training, and our practices are independently verified with the ePrivacy Seal.

parcelLab operates under a Responsible AI framework aligned with NIST AI RMF, ISO 42001, and the EU AI Act. Models are documented, validated for fairness and robustness, and overseen with human review where impact is high. Risks are tracked in a model risk register, and incidents follow the same strict security response timelines used for data protection.

We are compliant with the European Accessibility Act (EAA). Our tracking pages and returns portals are audited against WCAG 2.2 Level AA, supported by manual and automated testing through Valantic. Ongoing monitoring and annual reviews ensure accessible experiences for all users.

Certifications, Attestations

What's Included?

Secure SSO login for all users

Works with standard identity providers (Azure AD, Google, etc.)

Certified for SOC 2, HIPAA, GDPR, CCPA

WCAG 2.2 & EAA accessibility ready

Responsible AI (NIST, ISO 42001, EU AI Act)

Benefits

Greater security and compliance

Improved usability and employee satisfaction through a secure and quick method for your users to sign in with their corporate login credentials

Lower IT costs (that is: saves time on password resets when SSO is part of a unified access management system)

Learn more about Security

View the following topics for more in-depth information on using Security:

Certifications & Attestations

View our external audits and programs.

Single Sign-On (SSO)

See how you can implement SSO for the App.

Data Retention Policy

Learn about our data retention policy.

White Label Policy

Learn about how parcelLab maintains high email deliverability rates.

Data Protection APIs

Find out how you can request for and remove Personally Identifiable Information (PII) in the parcelLab system via API.

PreviousData Exports NextCertifications, Attestations

Last updated 8 days ago

Was this helpful?