Tested, Proven, Trusted Security
Gainsight is trusted by enterprises to protect their critical customer data
For companies of all sizes & industries
Current Alerts
Gainsight was made aware of a campaign targeted at Salesloft Drift (marketing software-as-a-service) and impacting a large number of Salesforce customers. This incident involved the theft of OAuth tokens connected to Salesloft Drift, a third-party application used for automating sales workflows that integrates with Salesforce databases to manage leads and contact information.
As soon as we learned of the event, we disconnected the Salesloft app from the Gainsight Salesforce environment. Our investigation confirms the incident was isolated to our CRM platform; no Gainsight products or services were impacted, and they remain secure and fully operational.
We take this incident seriously and are working with Salesforce Support to identify the complete set of data that was exposed. We will update this page as we discover more information relating to this incident.
As of 3rd September, our investigation confirms that the information accessed in this incident was commonly available business contact details for points of contact and specific Salesforce related content, including:
- Names
- Business email addresses
- Phone numbers
- Regional/location details
- Gainsight product licensing information
- Plain text content from certain support cases [this does NOT include attachments]
Certified By Industry Standards
Companies of all sizes and industries are using Gainsight across departments to make their clients successful. We meet the most important compliance standards to ensure our security model meets and exceeds the needs of our customers.
We never stop improving our customer data protections.
Each customer’s trust is of the utmost importance to us. Enterprises of all sizes, located across different geographies and various industries are using Gainsight’s platform to make their clients successful. We implement the best information security compliance standards to ensure our security model meets and exceeds the needs of our customers. Gainsight adheres to all Security, Privacy, and Compliance requirements in our constant effort to provide our customers with the best products and services possible.
True security is being prepared for the future.
Our primary goal is to provide a safe and secure experience to our customers as we protect the data, the platform, employees and all stakeholders involved in the ecosystem. We think that strong security is the foundation of exceptional privacy.
Considering the risks involved and the nature of the sensitive/confidential data, we implement technical, contractual, and operational controls and best practices to protect data. To assist in protecting the privacy of our customers’ sensitive/confidential information, we are always looking for ways to make these measures better.
We value and protect your privacy.
Privacy for our website visitors, prospects, clients and their customers, is a priority at Gainsight. For more information on our privacy practices and policies, please read our privacy policy.
We set the gold standard when it comes to compliance.
We don’t simply speak it — we put it into action. At Gainsight, we uphold well-established compliance standards aligning with industry best practices, local laws and regulations/regulatory laws.
Contact [email protected] with any security questions, reports of vulnerabilities, or if you become aware of a possible security breach or incident.