Trust Center

Start your security review
View & download sensitive information
ControlK

Overview

To obtain access to confidential documents, please contact your TIS representative.

▶︎ Regarding SOC, our report covers the period [01 Nov - 31 Oct], the audit takes place in November, and the report is published yearly before 31 December. Our most recent report is the one published in December 2025. Link to report and bridge letter.

▶︎ For TIS Status monitoring (SLA), see here.

▶︎ For our SAP certification, see here.

If you have any question, please use our Support Portal.

Compliance

GDPR Logo
GDPR
ISO/IEC 27001 Logo
ISO/IEC 27001
SOC 1 Type 2 Logo
SOC 1 Type 2
SOC 2 Type 2 Logo
SOC 2 Type 2
TISAX Logo
TISAX
Trust Center Updates

Certifications

Copy link
Compliance

We published our Bridge Letter for SOC, covering the period 2025-11-01 to 2026-01-02. Wishing you a great year ahead!

We published our SOC Report for 2025, covering the period 2024-11-01 to 2025-10-31. We will follow early January with a bridge letter for the period 2025-11-01 to 2026-01-02.

We published our TISAX AL3 Assessment Report. It confirms our compliance with this standard used in the automotive industry, and is valid until May 2028.

Penetration Test Reports

Copy link
General

We published our Penetration Test Reports for 2025. In addition to our standard tests, we brought the TIS Agent in the spotlight. Auditors confirm in the Payment Hub and TIS Agent report that the TIS platform is "mature, robust and thoughtfully engineered", "well-hardened against all relevant OWASP Top 10 vulnerabilities, indicating that security best practices were applied consistently during development". Additionally, "the implementation reflects a disciplined and security-conscious engineering approach that emphasizes maintainability, stability and resilience".

Policy Updates

Copy link
Compliance

We updated our policies as part of our yearly review, and published the new versions on the Trust Center.

Documents

Featured Documents

REPORTSPentest Report
REPORTSSOC 1 Report & Bridge Letter
REPORTSSOC 2 Report & Bridge Letter
COMPLIANCEISO/IEC 27001

Reports

ESG Report 2025
Pentest Report
SOC 1 Report & Bridge Letter
View more

Change Management

Cash Forecasting Release Notes
TIS Release Notes

Product Security

Audit Logging
Multi-Factor Authentication
Role-Based Access Control
View more

Policies

Asset Management Policy
Audit Management Policy
Authentication & Authorization Policy
View more

Security Grades

HSTS Preload List
tispayments.com
login.eu.tispayments.com
eu.tispayments.com
login.us.tispayments.com
us.tispayments.com
cashforecasting.eu.tispayments.com
mobile.eu.tispayments.com
mobile.us.tispayments.com
MDN Observatory
tispayments.com
B
login.eu.tispayments.com
B
eu.tispayments.com
B
login.us.tispayments.com
B
us.tispayments.com
B
cashforecasting.eu.tispayments.com
A+
Qualys SSL Labs
tispayments.com
A+
login.eu.tispayments.com
A+
eu.tispayments.com
A+
login.us.tispayments.com
A+
us.tispayments.com
A+
cashforecasting.eu.tispayments.com
A+
mobile.eu.tispayments.com
A+
mobile.us.tispayments.com
A+
View more

Data Security

Access Monitoring
Data Asset Classification
Data Backups
View more

Legal

Cyber Insurance
Data Processing Agreement
Service-Level Agreement

Data Privacy

Data Breach Notifications
Data Protection Officer
Employee Privacy Training
View more

Access Control

Access Log Management
Data Access
Internal Single-Sign-On (SSO)
View more

Infrastructure

Status Monitoring
Amazon Web Services
Anti-DDoS
View more

Endpoint Security

Disk Encryption
DNS Filtering
Endpoint Detection & Response
View more

Network Security

We protect our corporate network against external & internal threats.

Corporate Security

Email Protection
Incident Response
Penetration Testing
If you need help using this Trust Center, please contact us.
Contact support
If you think you may have discovered a vulnerability, please send us a note.
Report issue
Built onSafeBase by Drata Logo