Security Portal

Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Overview

For an update to security incidents, please see information on the bottom of the page!

Here at Mailgun we take security and privacy seriously. On this Security Status Page you can find an overview of our internal security program. You can also request access to our audit reports and security policies for review,

Send us a note at security@mailgun.com if you have any additional questions.

Compliance

CCPA Logo
CCPA
GDPR Logo
GDPR
HIPAA Logo
HIPAA
ISO 27001 Logo
ISO 27001
ISO 27701 Logo
ISO 27701
PCI DSS Logo
PCI DSS
SOC 2 Logo
SOC 2
Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Documents

All
Public
Private
HIPAA
ISO 27001
ISO 27701
PCI DSS
SOC 2
Device Security standards
HIPAA Report
Network Diagram
Other Reports
PCI DSS
Pentest Report
SOC 2 Report
CAIQ
HECVAT Lite
Access Control Policy
Asset Management Policy
Backup Policy
Business Continuity Policy
Data Classification Policy
Encryption Policy
General Incident Response Policy
Information Security Policy
Network Security Policy
Physical Security
Risk Management Policy
BC/DR
Architecture Diagrams
Roles and responsibilities for ISMS and PIMS

Risk Profile

Data Access LevelRestricted
Impact LevelSevere
Recovery Time Objective< 12 Hours
See more

Product Security

Audit Logging
Data Security
Integrations
See more

Reports

Device Security standards
HIPAA Report
Network Diagram
See more

Self-Assessments

CAIQ
HECVAT Lite

Data Security

Access Monitoring
Backups Enabled
Data Erasure
See more

App Security

Software Development Lifecycle

Legal

Cyber Insurance
Data Processing Agreement
Privacy Policy
See more

Access Control

Data Access
Logging
Password Security

Infrastructure

Amazon Web Services
BC/DR
Data Center
See more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management
See more

Network Security

Data Loss Prevention
Firewall
IDS/IPS
See more

Corporate Security

Employee Training
Incident Response
Internal Assessments
See more

Policies

Acceptable Use Policy
Access Control Policy
Asset Management Policy
See more

Security Grades

Qualys SSL Labs
mailgun.com
A+

Trust Center Updates

Mailgun's Response to the 2022 OpenSSL 3 Vulnerabilities

IncidentsCopy link

Mailgun's Response to the 2022 OpenSSL 3 Vulnerabilities

After careful review of our infrastructure, the Mailgun team has determined that we are not currently vulnerable to the OpenSSL 3 vulnerabilities CVE-2022-3602 and CVE-2022-3786 that were disclosed on November 1, 2022. As a helpful resource, you can use this page to determine if certain widely used software in your environment is affected or unaffected: https://github.com/NCSC-NL/OpenSSL-2022/blob/main/software/README.md

Thanks and please reach out with any questions.

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Report Issue