In order to provide complete functionality, this web site needs your explicit consent to store browser cookies. If you don't allow cookies, you may not be able to use certain features of the web site including but not limited to: log in, buy products, see personalized content, switch between site cultures. It is recommended that you allow all cookies

    Trust and Security
IT Controls (ISAE3402/SOC)

IT Controls (ISAE3402/SOC)

Basware services provide IT General and Application controls which are assessed in frequent ISAE 3402/SOC audits conducted by independent 3rd party.

Publicly available 2020 report summaries:

Publicly available 2019 report summaries:

Basware Personal Data Processing Appendix [released 10 March 2020]
Appendix applicable to processing of personal data through Basware services made available via a network, including Basware Security Measures annex.

Security Testing

Security Testing by Basware

  • Basware carries out vulnerability scanning using several security tools for testing services externally and internally
  • Basware services are also tested by an external security company. General level statement of external security testing is available for customers on request.

Security Testing by the Customers

  • Depending on agreed Service Level, Customers are welcome to engage security testing of Basware Services following agreed processes and practices. For further details please contact your Customer Support Manager
Security Testing

Security and privacy contacts

Security Incidents

Create Case in Customer Support Portal

Regarding security incidents, contact the Basware Security team directly at: [email protected]

Responsible Disclosure for Security Vulnerabilities

Report a Security Issue

Privacy specific requests, questions and concerns

[email protected]

Our GDPR commitment

Ethical or Code of Conduct Issues

[email protected]