Protect your data and customers
Privacy is paramount to customers of your business, which is why we strive towards leading the way for compliance and security in email:
SOC types I & II certified
GDPR compliant
HIPAA compliant
ISO 27001 certified
PCI-compliant SAQ-A merchant
Looking for additional compliance standards or looking for our DPA? Our security portal has a comprehensive list of all our data practices, protections, and compliance standards across the Sinch Email portfolio.
Mailgun for Enterprises
Let's Talk Email
Application and account security
Keeping your account secure is one of our highest priorities, and we're continually iterating on existing and new security measures to keep your accounts safe.
AES-256 encryption-at-rest for all customer data
Encryption via TLS and HTTPS
Account lockdown for suspected compromise
Critical security-based log retention for 365 days
Third-party bug bounty program
Daily account data back-ups with incremental/point-in-time encrypted recovery on all primary databases
Intrusion detection systems (IDS) in place to detect unauthorized account access
Account and systems access control
1. Responsibilities
Different team members have various responsibilities related to your email sending, and limited access mitigates the risk of something occurring on your account. Administrative access to Mailgun systems and services follows the principle of lease privilege. Access to systems is based on job roles and responsibilities.
2. Individual access
Alongside these user roles, Sinch Mailgun utilizes individually identifying usernames that are not permitted to be shared or reassigned to another person. Account onboarding and offboarding processes are well documented and followed to ensure proper account access by internal and external systems.
3. Security
This attention to security applies to our internal systems as well, with VPN and multi-factor authentication being used to access internal support tools and product infrastructure.
Regular patching and maintenance
Sinch Mailgun's patch management process ensures that all of our systems go through a patch at least once a month. Monitoring, alerting, and routine vulnerability scanning occur to ensure that all product infrastructure runs smoothly after all patches.
When necessary, Mailgun can patch infrastructure in an expedited manner in response to the disclosure of critical vulnerabilities.
Sinch Email enables the creation of thoughtful communications experiences
Integrate in minutes
Mailgun’s RESTful APIs make adding emails to your business a breeze. Let your development team pick their languages of choice and start sending.
Empower effortless template creation
Users can create responsive, beautiful templates all from your application with Mailjet’s Email Editor through Mailjet Embedded.
Test your customers’ email templates
With previews on over 100+ clients and devices, Email on Acid helps you make certain your message displays as intended—in every inbox.
Expand your communications offerings
Send personal, secure messages directly to your customers on their favorite channels, with cloud-based messaging services from Sinch.
Utilize actionable insights
Spend less time monitoring your reputation and email performance by having an Mailgun Optimize expert proactively track your email program.
Add a personal touch
Create a customizable video or voice chat experience in mobile, web, or desktop applications to build deeper connections with your customer base.
Reporting abuse
If you've received spam from a Mailgun customer, or suspect that a customer is in violation of our Acceptable Use Policy; the best way to inform us is to report it to abuse@mailgun.com with full email headers included.
Our security and compliance teams will take a look as soon as possible to determine the best course of action.
