English
EnglishFrançaisEspañolDeutschPortuguês
Talk to salesLog In
Security

Securely powering millions of connections

Trust Calendly to keep your data secure with enterprise-grade admin management, security integrations, data governance, compliance
audits, and privacy protections.

Sign up for freeGet a demo


Simplified scheduling for more than
200,000,000 meetings

Market-leading software meets enterprise-grade security

Customer Data Protection

  • Domain Control and account oversight

  • Logical tenant separation

  • Encryption in transit (TLS 1.2+)

  • Encryption at-rest (AES-256) and in transit

Infrastructure Security

  • Hosted on leading cloud infrastructure provider

  • Network and perimeter protection

Application Protection

  • Web application firewall

  • Distributed Denial of Service (DDoS) Protections

  • Regular vulnerability scanning

  • Semi-annual penetration testing

Compliance & Privacy

  • SOC 2 Type 2 Report

  • SOC 3 Report

  • GDPR & CCPA compliance management

  • CSA STAR Level One attestation

  • ISO/IEC 27001 report

  • FINRA guidelines for cybersecurity

  • GLBA guidelines for financial institutions

Org Security

  • Security education and awareness training

  • 24/7 monitoring and incident response

  • Vendor risk management

  • Business continuity planning

Account Protection

  • Bot prevention

  • Login notifications

  • SSO and User lifecycle management (SCIM)

  • Real-time activity (audit) log

  • PII data deletion management

  • Flexible admin roles

Request documentation via Whistic

Calendly uses Whistic to securely share company and product security profiles as well as detailed documentation required for vendor security assessments.

Get started

Certifications and frameworks

AICPA - SOC 2 (Type 2)

SOC 2 (Type 2)

Security, availability, and confidentiality trust services criteria

AICPA - SOC 2 (Type 2)

SOC 3

Overview of Service Organization Controls

GDPR blue background

GDPR

Follow guidelines for data protection and data subject rights for EU residents

SOC 2 Type 2 Lock

CCPA

Follow guidelines for privacy rights and consumer protection for California residents

CSA Star

CSA STAR

Cloud Security alliance STAR Level One self assessment for trust assurance and risk

PCI Image with green background

PCI COMPLIANT

Via payment processor, Chargebee, which encrypts and stores credit card details

ISO/IEC 27001 - Desktop

ISO/IEC 27001

Follow guidelines to secure information in all forms and protect confidentiality of data

FINRA - desktop

FINRA

Follow FINRA guidelines and meet cybersecurity requirements

GLBA (desktop)

GLBA

Follow GLBA guidelines required for financial institutions

“We’re at a monumental moment in our history where workers have an endless number of devices at their disposal, meaning security leaders have a greater responsibility to users, customers, and employees safely into their new era.”

Chief Information Security Officer
Frank RussoChief Information Security Officer, Calendly

Adapt to evolving business needs — without the risk

Security at scale

Security at scale

More people? No problem. Flexible access management tools fold seamlessly into your corporate policies and IT workflows so nothing falls through the cracks. Calendly offers SSO, SCIM, Domain Control, an activity log, and more.

Learn more about IT Solutions
Domain control and data protection

Domain control and data protection

Claim your corporate domain and establish how new employees signing up for Calendly request access to your centralized, IT-managed account

Collaboration with control

Collaboration with control

Empower your remote workforce to schedule efficiently as a team without adding risk to the business. Calendly's activity (audit) log offers visibility while granular, role-based permissions prevent unauthorized changes.

Read the article
Enterprise-grade data governance

Enterprise-grade data governance

Maintain compliance with Calendly's governance and risk management capabilities — such as global retention policies, custom terms of service, data deletion, audit tracking, and more.

Review technical documentation
Fraud, Trust, and Safety

Fraud, Trust, and Safety

Security and the safeguarding of customer data shouldn’t be an afterthought. Calendly’s dedicated team constantly enhances our security techniques and addresses identity impersonation, fraud, and other suspicious activity.

Read our security white paper

“The security aspect of Calendly for enterprise was important and the ease of deploying it out to the people that needed it. We got over a hundred licenses and it was really easy to set it up and deploy it out to the people.”

Procurement ManagerInternational media company
Security

Additional resources

Privacy Policy

Privacy Policy

Understand how your data is collected and used.

Terms of Use

Terms of Use

The legal agreement between you and Calendly, LLC.

Security White Paper

Security White Paper

A technical overview of our security approach.

Privacy White Paper

Privacy White Paper

An overview of our privacy program.

Privacy White Paper - Calendly's Prelude

Privacy White Paper - Calendly's Prelude

An overview of our privacy program for Calendly's Prelude

Report a security issue

Alert the Calendly security team to a bug or issue.

Easy access for easy bookings

Share your Calendly link right from your browser, so you can schedule meetings without the back-and-forth.

Sign up for freeGet a demo

Share your Calendly link right from your browser, so you can schedule meetings without the back-and-forth.

Sign up for freeGet a demo