Trust Center

Start your security review
View & download sensitive information
Search items
ControlK

Overview

Welcome to Brex's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.

Compliance

PCI DSS Logo
PCI DSS
SOC 1 Type 2 Logo
SOC 1 Type 2
SOC 2 Type 2 Logo
SOC 2 Type 2

Brex is reviewed and trusted by

Anthropic-company-logoAnthropic
Tucows-company-logoTucows
BambooHR-company-logoBambooHR
Thrive Global-company-logoThrive Global
DoorDash-company-logoDoorDash

Documents

REPORTSPentest Report
REPORTSSOC 1 Report
REPORTSSOC 2 Report
COMPLIANCEPCI DSS
COMPLIANCESOC 1 Type 2
COMPLIANCESOC 2 Type 2
SELF-ASSESSMENTSCAIQ
LEGALData Processing Agreement
AIAI Risk Management
CORPORATE SECURITYPenetration Test Methodology
POLICIESBusiness Continuity/Disaster Recovery (BC/DR) Policy
POLICIESIncident Response Plan Summary

Risk Profile

Data Access Level
Impact Level
Critical Dependence
View more

Product Security

Audit Trail
Browser Security
Integrations
View more

Reports

Network Diagram
PCI DSS
Pentest Report
View more

Self-Assessments

CAIQ

Data Security

Access Monitoring
Data Backups
Data Retention
View more

App Security

Responsible Disclosure
Code Analysis
Credential Management
View more

AI

AI Governance
AI Risk Management
AI Security
View more

Legal

SubprocessorsAirwallex-company-logoAmazon-company-logoAmplitude-company-logodLocal-company-logoMastercard-company-logo
Cyber Insurance
Data Processing Agreement
View more

Data Privacy

Cookie Notice
Data Breach Notifications
Data Collected
View more

Access Control

Data Access
Logging
Password Security
View more

Infrastructure

Status Monitoring
Amazon Web Services
Anti-DDoS
View more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management
View more

Network Security

Data Loss Prevention
DMARC
Firewall
View more

Corporate Security

Email Protection
Employee Training
HR Security
View more

Policies

Acceptable Use Policy
Access Control Policy
Bring Your Own Device (BYOD) Policy
View more

Security Grades

CryptCheck
brex.com
A+
ImmuniWeb
brex.com
A-
Qualys SSL Labs
brex.com
A+
View more
Trust Center Updates

Changes to Brex's third-party subprocessors list

Copy link
Subprocessors
February 28, 2024

February 2024 Changes to Brex's third-party subprocessors list:

We are adding the following entity to perform invoice extractions: Extend (USA)

We are adding the following entity as our privacy compliance platform: Transcend (USA)

We are removing the following entity: OneTrust (USA)

Please reach out to privacy@brex.com with any objections to the above additions.

PCI Attestation of Compliance

Copy link
Compliance
October 18, 2023

Brex's 2023 PCI Attestation of Compliance report is available now!

If you think you may have discovered a vulnerability, please send us a note.

Report Issue
Built onSafeBase by Drata Logo