As a Salesforce customer, we know you have made a conscious decision to choose software built on trust and security. We aim to provide service that meets these same expectations.


Oktana manages a compliance program that carefully considers data protection matters, with both physical and remote considerations, across our onshore and nearshore teams. We maintain a growing number of certifications and attestations to validate our commitment to the security of our business and yours.


To request more information or to report a potential security incident, please contact us at


SOC 2 Type II report covering Security, Availability, Integrity, Confidentiality & Privacy

The American Institute of Certified Public Accountants (AICPA) Service Organization Controls (SOC) reports give assurance over control environments as they relate to the retrieval, storage, processing and transfer of data. The SOC 2 reports cover controls around security, availability and confidentiality of customer data. Additional information can be found on the AICPA website.

Compliance FAQ

External Security Assessments

Attestation of penetration tests and security assessments performed by third parties

We conduct regular external security assessments. Upon request, we can provide a high-level report intended only to provide information on the tests performed and scope of testing. As verified by external audits, vulnerabilities discovered during testing are tracked and resolved in accordance with corporate policy and industry best practice.

Business Continuity Plan

Attestation of a disaster recovery plan validated by third parties

Oktana maintains a global Business Continuity plan that covers each of our locations and supports a robust strategy to provide continuous secure service in the event of disaster. As validated by external audits, this plan has been developed from industry-accepted methodologies and encompasses principles of high-availability engineering.

Onshore Resources

We understand your compliance needs
With access to onshore resources, we have the ability to meet compliance requirements specific to industries including Financial Services, Healthcare and U.S. Public Sector, all of which we actively serve.