8x8 CPaaS Security
Security is our top priority
We know that security is important to customers. We take the responsibility to ensure that the 8×8 Communication APIs platform is absolutely secure, private and reliable, so customers can have a peace of mind.
Trusted by more than 3 million business users. 
Compliance Programs
At 8×8, we take the lead in the cloud-based communications industry for security across a company’s entire enterprise.
8×8 cybersecurity controls are designed sufficiently and operated effectively throughout the testing periods.
8×8 is HIPAA compliant and provides Business Associate Agreements for Covered Entities and Business Associates.
8×8 is one of the first companies to be awarded by the Cyber Security Agency of Singapore, for good cybersecurity practices.
8×8’s information security management system is globally certified as compliant with the requirements of ISO 27001: 2022 (incorporating ISO 27017:2015 control set).
Industry-leading Security and Compliance
Any enterprise product or service must meet or exceed existing customer security and compliance requirements. Prior to launch, all service offerings go through rigorous software code security stress testing using static and dynamic analysis.
Security certifications
8×8’s Responsible Disclosure & Bug Bounty Programs
8×8 runs responsible disclosure and incentivized bounty programs through HackerOne to allow anyone to report vulnerabilities.
With this National Institute of Standards and Technology best-practice RDP, we have a well-defined process for finding and fixing vulnerabilities—before they could be exploited. We partner with the security’s greatest minds to keep our customer’s and partner’s data safe and secure.
Application Development
The 8×8 Software Development Life Cycle includes multiple stages of review; starting with an architectural review at the start of new projects, ongoing code checking by both manual peer review, further review by security staff and automated reviews utilizing Static Application Security Testing & Dynamic Application Security Testing tools.
Cryptography Measures
Data is encrypted in-transit and at-rest, utilizing strong encryption technologies, such as the Transport Layer Security (TLS) version 1.2, Short Message Peer-to-Peer (SMPP) protocol via TLS, and the 256-bit AES algorithm in Galois Counter Mode (AES-GCM).
Built-in security
8×8 provides in-product security and data protection for users to securely integrate our solution, including:
- Two-Factor Authentication
- Single-Sign-On via SAML
- Number Lookup API
- Mobile Verification API
- Number Masking
Comprehensive processes that meet the highest security requirements
The security, availability, and confidentiality requirements for 8×8 Communication APIs platform are managed using a combination of:
1. Documented policies and procedures
2. Management oversight
3. Security-first and privacy-first cultures
4. Technology implementations using security-by-design principles
These management practices are implemented in all areas to protect systems, data, and personnel and to ensure compliance with industry best practices and standards.
8×8 is committed to your security
From 8×8’s management philosophy to physical, process, employee, product, and infrastructure security as well as business continuity, 8×8 has put security measures in place to ensure your messages are reliably and securely delivered.
To get started, the 8×8 Developer Hub gives access to step-by-step guides and API references.
Learn more
Get an in-depth look at 8×8’s security practices with our security whitepaper.
Talk to an Expert
Complete this form and an 8x8 sales specialist will reach out to you shortly, or call our local experts on 1800 942 967.