Dropbox Security Page Overview

security landing page
Key Takeaways

File protection

Encryption, file recovery, bug bounty

Privacy protection

Transparency report, privacy policy

Hero section CTA

Business Trust Guide
Based on the page highlights.

Short Overview

Dropbox's security page emphasizes its data protection capabilities and focuses on bilateral responsibility by mentioning the best practices for users to protect their own data and accounts. At a general glance, the page revolves around protecting user files, privacy, and accounts per the company, along with a section dedicated to best practices for Dropbox users. In addition, quick links dominate each dedicated part on the page, and the CTA directs readers to the Business Trust Guide, where they can learn more.

Highlighted keywords: Protect, files, account

Security Page Structure

Dropbox gathers all security, compliance, and privacy efforts under its Business Trust Guide.

Security Page link: dropbox.com/en_GB/security

Compliance Page: dropbox.com/business/trust/

Page highlights

  • Hero section CTA linking to Business Trust Guide page that covers all security, compliance, and privacy knowledge base
  • File protection capability highlight mentioning data encryption, file recovery, their third-party bug report service HackerOne
  • Privacy protection capabilities, including quick links to the privacy policy, transparency report, and data regulation certifications
  • Features and best practices for account protection, including two-step verification

Compliance Certifications

  • ISO
  • SOC 1, 2, 3 reports
  • EU-US Privacy Shield and Swiss-US Privacy Shield
  • GDPR
  • Cloud Security Alliance: Security, Trust, Assurance, Risk (CSA STAR) Registry
  • HIPAA/HITECH
  • Germany BSI C5 Attestation
  • NIST SP 800-171 R2 Attestation
  • FERPA and COPPA
  • PCI DSS
  • FDA 21 CFR Part 11

Best practices checklist

This checklist is based on the Minimum Viable Secure Product and the information on the concerning platform’s security and compliance pages.

Note that some details might be missing if the information is mentioned in a whitepaper or login-required Trust Portal and not directly on the page.

check icon
Backup and disaster recovery
check icon
Self-assessment
check icon
External testing
check icon
Incident handling
check icon
Single sign-on
check icon
Backup and disaster recovery
By Resmo

Security increases customer trust and sales

Learn how top SaaS companies apply security communication best practices and compare vendors with a free PDF guide.

Pagerduty logo