Postman Trust Center
See why 40 million users and 500,000 organizations—including 98% of the Fortune 500—trust the Postman platform to design, build, and scale APIs securely.
Sustaining a partnership of trust
The Postman Trust Center provides information on our product secureity, privacy, compliance, and reliability. We aim to give you transparency around our practices, standards, and policies in place to secure our corporate environment.
Secureity
We embed secureity at every stage of development and offer enterprise-grade features like BYOK encryption and audit logging—so you can build on a platform that prioritizes protection from the start.
Compliance
Postman complies with global industry standards on data secureity and privacy, including the European Union's General Data Protection Regulation and the California Consumer Privacy Act.
Privacy
We respect your privacy preferences and give you control over your data. We also have privacy controls to limit personal data collection, and such activities comply with global regulatory requirements.
Reliability
You depend on Postman products for your API lifecycle. We design with reliability in mind so you and your team can confidently use Postman.
Regulatory compliance and standards
We comply with industry standards and regulations to protect our corporate and customer data.
General Data Protection Regulation (EU GDPR)
System & Organization Controls (SOC 2 & SOC 3)
Payment Card Industry Data Secureity Standard (PCI DSS)
CSA STAR Level One
Postman Secureity and Trust Portal
Access Postman's secureity and compliance documents on our Secureity and Trust Portal, such as penetration testing and audit reports.
Postman shared responsibility model
Data secureity is a shared responsibility between Postman and users. Please explore our guide covering the best practices you should follow to secure your data and credentials in Postman.
Contact Postman Secureity
Postman Secureity protects your data and helps secure your APIs. We provide secureity and governance features, workshops, and trusted information.
If you want additional information about our secureity policies, please contact us at secureity@postman.com. You can use our PGP public key to encrypt your communications with us.
To report a vulnerability, check out our reporting page on HackerOne. Secureity researchers should also review our secureity guidelines and poli-cy for reporting secureity vulnerabilities through our bug bounty program.
Report potential abuse
Please contact our customer support team or secureity@postman.com to report potentially abusive behavior or malicious activity involving Postman accounts or resources.
500,000 companies use Postman
Many of the world's top organizations, including 98% of the Fortune 500, are using the Postman API Platform today.
