Pipedrive, the easy and effective sales CRM for small businesses, announced it has reaffirmed its commitment to information security and data privacy by successfully completing globally recognized audits and certifications.

Pipedrive has reaffirmed its commitment to information security and data privacy by successfully completing globally recognized audits and certifications.

According to Vanta’s State of Trust Report 2025, more than half (55%) of organizations say that security risks have never been higher than now. The rapid adoption of AI increases the complexity of managing risks, both in security and in privacy. For the same reason, Gartner predicts that by 2027, 17% of all cyberattacks and data breaches will involve generative AI technologies.

Marketing Technology News: MarTech Interview With Kristin Russel, CMO @ symplr

“At Pipedrive, security and privacy aren’t just checkboxes. They’re foundational to how we operate and how we earn customers’ trust. As we expand Pipedrive’s AI-driven features, maintaining rigorous security and privacy standards remains at the core of how we innovate. Successfully transitioning to the updated ISO standards and renewing both our ISO 27001 and ISO 27701 certifications shows that we’re not only meeting the most current international benchmarks but continuously improving our programs. We take the responsibility of protecting our customers’ data seriously, with processes that are continuously refined and externally validated to meet the highest standard of trust,” said John Mutuski, Chief Information Security Officer at Pipedrive.

Marketing Technology News: Is Your CMO Ready to Be a Quantitative Analyst?

The updated certifications represent the core pillars of Pipedrive’s security and privacy efforts:

• Successfully transitioned to the new ISO/IEC 27001:2022 standard, the globally recognized framework for managing information security risks through a certified Information Security Management System (ISMS). This certification reflects modern requirements and best practices in how organizations structure, implement and improve their approach to protecting sensitive data, an increasingly critical area for businesses of all sizes operating in digital environment.

• Successfully renewed certification under ISO/IEC 27701:2019, the international standard for Privacy Information Management Systems (PIMS). The framework outlines the necessary requirements and controls to manage privacy risks and ensure responsible processing of personal data. By maintaining compliance with this standard, Pipedrive demonstrates a proactive approach to data protection, enhancing regulatory alignment, strengthening internal practices and fostering trust through transparent, accountable handling of personal information.

With AI playing an increasingly central role in Pipedrive’s product development, world-class standards for information security and data protection remain embedded in every layer of innovation.