SOC 2 and FedRAMP Reports

In 2018, CircleCI was authorized by FedRAMP (the federal government’s program for assessing and authorizing technology vendors), making CircleCI the first CI/CD tool to meet the rigorous security and privacy standards required by government agencies. Now CircleCI is also SOC 2 compliant, adding another industry-recognized security accreditation.

You can read more in our blog posts:

Modernizing federal DevOps: CircleCI becomes first continuous integration tool with FedRAMP authorization

Continuous integration that you can trust: announcing SOC 2 compliance

To access either our SOC 2 report or our FedRAMP Appendix B, please visit

If you experience any issues or have questions regarding these documents, please reach out to 

Was this article helpful?
4 out of 8 found this helpful



Article is closed for comments.