SOC 2 Type II compliance demonstrates the digital commerce leader’s security and compliance prioritization, and a major milestone for the company
HDS certification underscores commitment to securely managing health data
commercetools' systems and processes are audited consistently as part of our security and compliance programs
MUNICH, GERMANY - February 6, 2024 – commercetools, the global leader in composable commerce, today announced its Service Organization Control (SOC) 2 Type II compliance, an audit by the rules of the American Institute of Certified Public Accounts (AICPA) that affirms the digital commerce leader’s information security practices, procedures, and operations.
commercetools’ customers value its category-leading technology for its flexibility, agility and lower total cost of ownership (TCO) at scale. Due to the true composability of commercetools' commerce solutions, its customers can create distinct tech stacks, leveraging the company’s extensive ISV partner network for a myriad of features whether its search and personalization or PIMs and PSPs. As such, there is an increased need for more trust and transparency into its commerce vendor's operations, processes, and results.
“Our SOC2 Type II report is a big pillar in our security program at commercetools, underlining the advanced and high maturity of the security controls of our Information Security Management System,” says Emil Pfrang, Head of Information Security at commercetools.
In addition to SOC2 Type II, commercetools has also obtained HDS certification, a requirement by the French Public Health Code for handling personal health information.
Being at the core of the best-of-breed tech stacks, commercetools prioritizes information security as an integral part of the commercetools corporate strategy, continuously undergoing independent verification of platform security, privacy and compliance controls. This strong focus on standard conformance and compliance helps commercetools' customers to meet regulatory and policy objectives.
commercetools' SOC2 Type II report covers the Trust Services Criteria for Security as well as additional criteria for Availability, Processing Integrity, Confidentiality, and Privacy.
The company is committed to building a portfolio of the most advanced security certifications. Learn more about commercetools security from its Trust Center.
About commercetools
commercetools is the leading composable commerce platform, allowing companies to dynamically tailor and scale shopping experiences across markets. We equip some of the world’s largest businesses with tools to future-proof digital offerings, reduce risks and costs, and build outstanding experiences that drive revenue growth.
Headquartered in Munich, commercetools has led a global renaissance in digital commerce by combining cloud-native, technology-agnostic, independent components into a unique system that addresses specific business needs. We empower brands – including Audi, Danone, Eurorail, NBCUniversal, Sephora and Volkswagen Group – to stay ahead of changing consumer and buyer behavior. To learn more, visit