Pipedrive, the easy and effective sales CRM for small businesses, today announced it has reaffirmed its commitment to information security and data privacy by successfully completing globally recognized audits and certifications.

According to Vanta’s State of Trust Report 2025, more than half (55%) of organizations say that security risks have never been higher than now. The rapid adoption of AI increases the complexity of managing risks, both in security and in privacy. For the same reason, Gartner predicts that by 2027, 17% of all cyberattacks and data breaches will involve generative AI technologies.

“At Pipedrive, security and privacy aren’t just checkboxes. They’re foundational to how we operate and how we earn customers’ trust. As we expand Pipedrive’s AI-driven features, maintaining rigorous security and privacy standards remains at the core of how we innovate. Successfully transitioning to the updated ISO standards and renewing both our ISO 27001 and ISO 27701 certifications shows that we’re not only meeting the most current international benchmarks but continuously improving our programs. We take the responsibility of protecting our customers’ data seriously, with processes that are continuously refined and externally validated to meet the highest standard of trust,” said John Mutuski, Chief Information Security Officer at Pipedrive.

The updated certifications represent the core pillars of Pipedrive’s security and privacy efforts:

• Successfully transitioned to the new ISO/IEC 27001:2022 standard, the globally recognized framework for managing information security risks through a certified Information Security Management System (ISMS). This certification reflects modern requirements and best practices in how organizations structure, implement and improve their approach to protecting sensitive data, an increasingly critical area for businesses of all sizes operating in today’s digital environment.

• Successfully renewed certification under ISO/IEC 27701:2019, the international standard for Privacy Information Management Systems (PIMS). The framework outlines the necessary requirements and controls to manage privacy risks and ensure responsible processing of personal data. By maintaining compliance with this standard, Pipedrive demonstrates a proactive approach to data protection, enhancing regulatory alignment, strengthening internal practices and fostering trust through transparent, accountable handling of personal information.

With AI playing an increasingly central role in Pipedrive’s product development, world-class standards for information security and data protection remain embedded in every layer of innovation. Pipedrive’s ISO certificate is available in the company’s public Trust Center.

About Pipedrive

Founded in 2010, Pipedrive is the easy and effective sales CRM that drives small business growth. Today, Pipedrive is used by revenue teams at more than 100,000 companies worldwide. Pipedrive is headquartered in New York and has offices across Europe and the US. The company is backed by majority holder Vista Equity Partners, and Bessemer Venture Partners, Insight Partners, Atomico and DTCP. Learn more at www.pipedrive.com.

View source version on businesswire.com: https://www.businesswire.com/news/home/20251030252839/en/

Pipedrive has reaffirmed its commitment to information security and data privacy by successfully completing globally recognized audits and certifications.