Cloud 101CircleEventsBlog
Register for CSA’s free Virtual Cloud Trust Summit to tackle enterprise challenges in cloud assurance.

CSA STAR Registry

Security, Trust, Assurance, and Risk Registry

Listings for, Inc.

Listings for, Inc., inc. (“Salesforce”), headquartered in San Francisco, California, is an enterprise cloud computing company that provides social and mobile cloud services. Controls described in this document only apply to the core Salesforce Services. The Salesforce Services are branded as,,, Sales Cloud, Service Cloud, Communities, Chatter, and Analytics Cloud. Salesforce provides services to companies of all sizes via a cloud services model. This collection of application development, deployment, and hosting services allows customers the ability to purchase, use, and customize Salesforce deployed applications, or use platform capabilities to develop their own applications. The Salesforce Services information system includes the environment which is a part of the App Cloud offering, as well as applications built on top of the platform including the Customer Relationships Management (CRM) Application, Chatter, and the supporting Salesforce Services’ infrastructure. provides each customer with the capability to implement business logic with workflow rules, approval processes, and custom code. Customers can store structured data, support Web browsers and mobile devices, integrate their services with other applications, perform their own reporting and analytics, and scale up or down with high availability and security. There are more than 150,000 customers worldwide who use the Salesforce Services for managing their sales, marketing, customer support, and various other business operations., Inc.

Listed Since: 2016-03-14


Offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services. It provides a set of Yes/No questions a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the Cloud Controls Matrix .


EU Cloud
This trustmark signifies adherence to the EU Cloud CoC through a dedicated framework and legally demonstrates GDPR compliance. Cloud Service Providers that have successfully passed the EU Cloud CoC’s evaluation process have their Compliance Mark visible in both the Code’s Public Registry as well as here in the CSA STAR Registry.