150+

Security and Data Governance Standards
Keep your data secure and compliant.
See how our best-in-class security program safeguards your data, manages risk, and helps you meet compliance standards—without compromising productivity.

Compliance at Procore

SOC 1 (Type 2)
Report on Fairness—internal control over financial reporting.

SOC 2 (Type 2)
Trust Service Principles—security and confidentiality.

ISO 27001:2013
Information Security Management System (ISMS) for any kind of digital information.
Download CertificateTRUSTED CLOUD INFRASTRUCTURE
Run your business on a secure, reliable cloud.
Trust in a global partner that supports you wherever you are, powered by a platform with world-class infrastructure, security, and privacy built into every layer.
- Data encryption at rest and data in transit
- Rely on 16 secure global file storage locations
- Stay up and running with 99.9% uptime for Procore's services
- See detailed information about Procore's current system status

ENTERPRISE-GRADE SECURITY
Control access to your information.
Take advantage of a robust set of security and data protection platform features that give you the tools you need to manage your security.
- Secure authentication and password protection
- Enable Single Sign-On (SSO) via Security Assertion Markup Language (SAML)
- Configure role-based permissions to control access to project data

DATA PRIVACY & GOVERNANCE STANDARDS
Meet privacy standards and control project data.
Get the flexibility you need to control the contents of your Procore account(s) and extract data without custom code. Comply with global privacy standards including:
- California's Consumer Privacy Act (CCPA)
- General Data Protection Regulation (GDPR)
- Australia's Privacy Act of 1988

AUTOMATED SECURITY PROTECTION
Multiple layers of defense.
To meet new challenges and demands, Procore continues to invest in broad initiatives that help ensure optimal security across our platform.
- All Procore applications are scanned for vulnerabilities and patched, including but not limited to, vulnerabilities identified in the Open Web Application Security Project Top 10
- Procore employs countermeasures and technologies to prevent and dissuade attackers
- Strict access control policies
- Ongoing security training program to keep our teams current on the latest security innovations throughout the industry

Named #1 in JBKnowledge's 2021 ConTech Report
Schedule a personal walkthrough to see how putting our customer's security first made us the leading construction management platform.
2M
Users Worldwide
1M+
Projects Built with Procore
99.9%
Uptime
FAQ
Report a Security Vulnerability
If you believe Procore has a security vulnerability, please contact us right away. In your report, please include a description of the vulnerability and information to reproduce the vulnerability (including browser/OS versions, URLs, etc).
Contact Procore Security