Webflow Security Page Overview

security landing page
Key Takeaways

Product security

SSO, 2FA, SSL encryption

Compliance certifications

ISO, SOC, GDPR

Internal security

identity and access management, employee training
Based on the page highlights.

Short Overview

Webflow approaches the security page in whitepaper format. The page divides into five main sections starting with Webflow's Information Security Program and continuing with other security-related topics like internal security measures and compliance certificates and reports. The internal security measures mentioned include SSO capabilities and two-factor authentication. All in all, the page also gives place to Webflow's application security, best practices users can take, and a dedicated email address to contact Webflow for security queries.

Highlighted keywords: Access, data

Security Page Structure

Webflow covers all data privacy, security, and compliance posture in a single security whitepaper. There is a link to it in the footer.

Security Page link: webflow.com/security

Page highlights

  • Compliance efforts, including SOC 2 and GDPR highlights and Webflow's payment processor, Stripe's certification for secure payment processing
  • Internal security measures like identity and access management, employee hardware security, and employee security training
  • Application security measures including SSO, two-factor authentication, SSL encryption
  • A shortlist of customer data that are stored in Webflow's cloud, such as customer names and billing address
  • A quick link to third-party service providers Webflow may have granted access to customer data
  • A list of best practices for data privacy and security

Compliance Certifications

  • ISO 27001
  • CIS
  • SOC 2
  • GDPR
  • CCPA

Best practices checklist

This checklist is based on the Minimum Viable Secure Product and the information on the concerning platform’s security and compliance pages.

Note that some details might be missing if the information is mentioned in a whitepaper or login-required Trust Portal and not directly on the page.

check icon
Backup and disaster recovery
check icon
Self-assessment
check icon
External testing
check icon
Incident handling
check icon
Single sign-on
check icon
Backup and disaster recovery
By Resmo

Security increases customer trust and sales

Learn how top SaaS companies apply security communication best practices and compare vendors with a free PDF guide.

Pagerduty logo