Customer Assurance Portal
Access to information and resources about Symantec’s information security policies, standards and assurance programs over the protection of customer data.
Symantec's Global Security Office
Committed to protecting our customers and their data
Protecting your most valuable assets is at the heart of our business, and Symantec remains vigilant about safeguarding your data and the privacy of the individuals it represents.
- Data and its protection are at the center of everything we do: Our business is built on security, compliance, and accountability, enabling us to protect our customers’ most valuable assets.
- We support the European Union’s General Data Protection Regulation (GDPR) and the safeguarding of privacy rights.
- Privacy is a fundamental human right and protecting personal data—whether our own, our customers’, or our partners’—is part of our commitment to corporate responsibility.
Customer Security Assurance
The Customer Security Assurance team plays a key role in supporting Symantec's customer due diligence needs during the sales process, and thereafter ensuring customers are provided with sufficient insight into Symantec's information security policies, practices and product assurances. This team within the Global Security Office (GSO) coordinates with Sales, Legal and the Product teams to respond to customers’ information security assessment questionnaires or providing product assurance documentation (e.g., ISO 27001 certifications, SOC audit reports, evidence of penetration testing or vulnerability scanning results).
Privacy Statement
Symantec's Privacy Statement describes the types of information we collect via Symantec’s web sites, how we may use that information and with whom we may share it. Our Privacy Statement describes the measures we take to protect the security of the information. We also tell you how you may contact us to update your information, remove your name from our mailing lists or get answers to questions you may have about our privacy practices at Symantec.
Information Security Policies and Standards
Symantec’s Information Security policies and standards are aligned to industry standards, e.g., CSA, NIST, ISO/IEC 27001, SOC 2 and PCI. These policies and standards are reviewed and updated (as necessary) on an annual basis. The following information security domains are covered by Symantec’s Information Security policies and standards and can be accessed from the Customer Assurance Portal:
- Risk Management and Compliance
- Security Training and Awareness
- Personnel Security
- Data Classification and Protection
- Encryption and Key Management
- Security Incident Management and Response
- Supply Chain Risk Management
- Logical Access Control
- Workplace & Datacenter Security
- Endpoint Security
- Architecture & Cloud Security
- Change Management
- Asset Management
- Product Development & Operations Security
- Business Resiliency & Disaster Recovery
- Data Backup & Recovery
- Acceptable Use & Media Handling
- Vulnerability & Patch Management
- Security Monitoring
Product Assurance and Compliance
Symantec’s Global Security Office is driving a comprehensive assurance program to proactively meet the requirements of our customers in the dynamic landscape of the security industry. We actively promote awareness of global certification best practices and provide overarching guidance and support to our product teams to obtain and maintain Symantec product certifications. In addition, we offer a library of resources including ISO 27001 certifications, SOC audit reports, evidence of penetration testing and standardized questionnaire. These resource are available in the Customer Assurance Portal.
Voluntary Product Accessibility Templates
Symantec is committed to developing technology solutions that are accessible to persons of all abilities. To that end, we utilize the Voluntary Product Accessibility Template (VPAT™), developed by the Information Technology Industry Council, to assist government contracting officials and other buyers in making assessments of the accessibility features of our products and services.
Release of a VPAT, however, does not constitute a certification by Symantec that procurement of any electronic and information technology would comply with the requirements of Section 508 of the Rehabilitation Act of 1973 (29 U.S.C. § 794 (d)).
For additional information regarding Symantec’s VPAT program, please contact us.
- Symantec Cloud Data Protection - v4.x
- Symantec Cloud Workload Protection - v1.0
- Symantec CloudSOC - v2.91
- Symantec Content Analysis
- Symantec Control Compliance Suite - v12.0
Symantec Critical System Protection
- Stand-alone Console for Symantec Security: Server 6.0, Symantec Security: Server Advanced 6.0 and Symantec Critical System Protection Client Edition
- Symantec IoT CSP - v7.1
Symantec Data Center Security
- Stand-alone Console for Symantec Security: Server 6.0, Symantec Security: Server Advanced 6.0 and Symantec Critical System Protection Client Edition
- Web Console for Symantec Security: Server 6.0, Symantec Security: Server Advanced 6.0 and Symantec Critical System Protection Client Edition
- Symantec Data Loss Prevention - DLP v15.5
- Symantec DeepSight Intelligence
- Symantec Email and Web Security Cloud
Symantec Encryption (PGP)
- Symantec Encryption Desktop v10.4.1
- Symantec Encryption Management Server v3.4.1
- Symantec Endpoint Encryption - SEE v11.0
- Symantec PGP Command Line v.10.4.1
Symantec Endpoint Protection
- Symantec Endpoint Protection Client v14
- Symantec Endpoint Protection Client for Mac
- Symantec Endpoint Protection for Linux v12.x
- Symantec Endpoint Protection Manager Remote Console
- Symantec Endpoint Protection Manager Web Console
- Symantec Ghost Solution Suite - v3.3
- Symantec Identify Access Manager - SAM v2.0.2
- Symantec Information Centric Security Module - v15.5
- Symantec Information Centric Tagging - v14.6
- Symantec Insight for Private Clouds - v1.0.4
- Symantec Intelligence Center
- Symantec IoT Automotive - v1.0
- Symantec IT Management Suite - ITMS v8.1
- Symantec Managed PKI for SSL
- Symantec Messaging Gateway - SMG v10.6.3
- Symantec Mobility Suite - v5.5
- Symantec PacketShaper PSOS
- Symantec PacketShaper S-Series
- Symantec PolicyCenter PSOS
- Symantec Protection Engine for Cloud Services - v7.9
- Symantec Protection Engine for Network Attached Storage - v7.9
- Symantec Proxy AV
- Symantec ProxySG
- Symantec ProxySG Operating System
- Symantec Reporter - v10.3
- Symantec Risk Insight - v1.0
- Symantec Security Analytics - v7.2.3
- Symantec Security Awareness Service
- Symantec Security Simulation Platform - SSP v1.0
- Symantec Service Desk - v8.5
- Symantec SSL Visibility Appliance - v4.4.1.1
- Symantec Systems Cloud Portal
- Symantec Systems Management Center
- Symantec Trust Center for Enterprise
- Symantec Web Gateway - SWG v5.2.2
- Symantec Web Isolation Platform - v1.10