SOC 2 (Type 2)
Grammarly’s SOC 2 (Type 2) report validates our controls based on the security, privacy, availability, and confidentiality trust services criteria.
SOC 3
Grammarly’s SOC 3 report describes our validated controls regarding security, privacy, availability, and confidentiality.
ISO/IEC 27001:2022
Grammarly’s information security management system meets the requirements of ISO 27001 and 27002 international standards.
ISO/IEC 27017:2015
Grammarly’s information security practices meet the requirements of ISO 27017 regarding our provision and use of cloud services.
ISO/IEC 27018:2019
Grammarly meets the requirements of ISO 27018 regarding our protection of personally identifiable information (PII) in the cloud.
ISO/IEC 27701:2019
Grammarly's privacy information management system meets the requirements of ISO 27701 international standards.
ISO/IEC 42001:2023
Grammarly meets the requirements of ISO 42001 ensuring responsible AI development and use.
PCI DSS
Grammarly is compliant with the Payment Card Industry Data Security Standard.
HIPAA
Grammarly is compliant with the Health Insurance Portability and Accountability Act.
FERPA
Grammarly is compliant with the Family Educational Rights & Privacy Act.
GDPR
Grammarly complies with the EU General Data Protection Regulation (GDPR).
DPF
Grammarly is certified by the Department of Commerce for the Data Privacy Framework (DPF), for EU-US, Swiss-US, and UK extension, providing a transatlantic personal data transfer mechanism.
