SECURITY AND COMPLIANCE

Protected, Verified, Trusted.

Passport Workforce^® protects workforce and payroll data with SOC 1 Type 2, SOC 2 Type 2, and HIPAA compliant controls, giving your teams secure and audit ready data.

SOC 1 Type 2

Independent audits verify our financial reporting controls. Payroll and labor data stay consistent, accurate, and ready for internal or external review.

SOC 2 Type 2

Security, availability, and confidentiality controls are reviewed by third party auditors. Your workforce data stays protected and your systems stay reliable.

HIPAA Compliance

Safeguards support customers who manage health related data in the field. Your teams can handle sensitive information with confidence and reduced risk.

GDPR Compliance

We follow GDPR requirements for consent, access, and data protection. Customers in the EU have clear rights and strong safeguards for how their personal data is collected and used.

CCPA Compliance

We support CCPA rights for California residents with transparent data practices. Users can request access, deletion, and opt out options while their information stays securely managed.

PIPEDA Compliance

We meet PIPEDA standards for Canadian users through clear consent, secure data handling, and the ability to access or correct personal information when needed.

COMMON QUESTIONS

About Security and Compliance

What specific compliance reports do you maintain?

Passport Workforce maintains SOC 1 Type 2 and SOC 2 Type 2 reports, along with a HIPAA aligned control framework. We have been compliant since 2020.

Can we review your SOC reports as part of a security review?

Yes. We can share SOC reports under NDA as part of your vendor or security review process. Your account team or our sales team can coordinate access.

How does Passport Workforce handle encryption and data protection?

Customer data is encrypted in transit and at rest using industry standard protocols. Access to production systems is restricted to authorized personnel, monitored, and reviewed regularly, and we maintain backups and recovery procedures to reduce the risk of data loss.

How do you address privacy laws like GDPR, CCPA, and PIPEDA?

Our privacy practices support customer obligations under GDPR, CCPA, and PIPEDA. We use customer data to deliver and improve our services and to meet legal requirements, and we do not sell customer data. Full details are available in our Privacy Policy.

Who should we contact for security questionnaires or additional details?

Your best starting point is your Passport Workforce account team or our sales team. They can connect your security and procurement stakeholders with the right technical and compliance resources, including SOC reports and completed questionnaires.

FIELD WORKFORCE

Passport Crew Hub

Passport Schedule

IT & OPERATIONS

Passport Merge

FINANCE & PAYROLL

Passport Certify

Passport Insights

Where Your Operations Are Breaking

Field Data Integrity

Job Costing Accuracy

Workforce Visibility

Connected Systems

Certified Payroll Compliance

Construction

Field Services

Transportation

Manufacturing

Energy, Oil & Gas

Public Sector

Retail Field Services

Tradeshow Services

Our Story

Awards

Careers

News & Insights

Events & Shows

Technical Support

Have Questions? We've Got Answers.

Platform

Solutions

Industries

Company

Resources

Tech Support