Matcha - Trust Center
Compliance and Security Portal for Matcha.
Framework overview
An overview of Matcha's compliance status across common frameworks like SOC 2, ISO 27001, ISO 9001, and GDPR.
SOC 2 Type 2
Started
25Policies
An up to date list of policies published internally by Matcha.
Change & Release Management
Policy Management & Exception Handling
Secure Software Development Lifecycle
Privacy & Data-Subject Rights
Compliance & Regulatory Monitoring
Physical Security & Environmental
Encryption & Crypto Controls
Retention & Secure Disposal
Access Control & Least Privilege
Backup, Business Continuity & Disaster Recovery
Authentication & Password
Logging, Monitoring & Audit
Information Sharing & Transfer
Data Classification & Handling
Background Screening & On/Off-boarding
31Controls
An up to date list of controls published internally by Matcha.
Employee Verification
Secure Secrets
Planning
TLS / HTTPS
Incident Response
Public Policies
Encryption at Rest
Secure Devices
Secure Code
Access Review Log
Contact Information
Employee Descriptions
Board Meetings & Independence
Production Firewall & No-Public-Access Controls
Code Changes
Building / Workplace Rules