Our Commitment to Security

Patch My PC Security

At Patch My PC, security isn’t just a checkbox—it’s at the heart of everything we do.

ISO 27001 Certified Badge
View Trust Center
SOC 2 Compliance Badge
We take a proactive approach to protecting our customers, ensuring data security, compliance, and transparency. Some best practices include:

Data Protection & Privacy – We implement encryption, access controls, and rigorous policies to protect customer data.

Vulnerability Management – Continuous monitoring, rapid response, and proactive patching ensure a secure environment.

Compliance & Certifications – We align with recognized security standards to ensure regulatory compliance.

Secure Development Practices – Security is embedded in every stage of our software development lifecycle.

Compliance Security Illustration

Trusted By…

ISO 27001 Certified Badge

At Patch My PC, we take information security seriously. We’ve achieved the ISO 27001:2022 certification, demonstrating our commitment to the highest international standards for security, reliability, and trust. This certification reflects our ongoing dedication to protecting customer data and continuously strengthening our security posture. Download our ISO certificate from our Trust Center.

View Our ISO 27001:2022 Certification

SOC 2 Compliance Badge

Security and trust are core to how we operate at Patch My PC. Our SOC 2 Type 2 report demonstrates that we have the right systems and controls in place to protect customer data, with a focus on security, availability, and confidentiality. It reflects our ongoing work to strengthen our security posture as we grow. You can access our SOC 2 Type 2 report in the Trust Center.

View Our SOC 2 Type 2 Report

Security Compliance Blogs

Browse our archive of Patch My PC security articles.
View All Security Articles
Security
Security Validation of the Patch My PC Application Catalog
At Patch My PC, we understand that IT Security is vital to your organization, especially when considering a third-party patch management solution. We want to ensure you understand how we validate…
Security
Security Validation for Patch My PC Cloud 
Patch My PC Cloud is a cloud-native solution that is primarily designed for customers using Intune. It automates the packaging, deployment, and updating of third-party applications across devices….
Security
Security Validation of the Patch My PC Publisher
It is important to note that the Publisher is installed on to the top-most WSUS distribution point in the customers environment. How does the Patch My PC application catalog connect to the Patch…
Categories
Security, SLAs, Telemetry, and Terms of Service
Security, SLAs, Telemetry, and Terms of Service
Security, SLAs, Telemetry, and Terms of Service

The Patch My PC Trust Center is where you can find the most up-to-date information about Patch My PC security. Our Trust Center gives you access to our compliance certifications (such as ISO 27001), detailed information about our security controls and data collection, along with pre-filled security questionnaires (such as SIG and CAIQ).

Our software usage is governed by our Terms of Service and Privacy Policy.

Our goal is to release updates the same day the vendor releases the update. We generally release our catalog between 1:00 – 5:00 PM (Eastern Standard Time). You can review a full list of past catalog releases at catalog release history.

If a security update is released later in the afternoon, we often release two catalogs in a scenario where the update is a high-security risk. More minor non-security updates released later in the afternoon will be updated the following business day.

For us to release an update to production, it needs to pass our security validation and installation validation checks.

For a detailed process of our malware testing, please review Deep Dive Into Security Validation of Updates and Applications

We upload all vendor installers (.EXE, .MSI, .MSP Files) to VirusTotal to ensure installers for third-party products are free of malware. VirusTotal scans each installer through over 70 different anti-virus engines. 

We will collect basic telemetry data with our products to improve our products and services.

To learn about the specific data collected across all Patch My PC products, please see our documentation for Patch My PC Publisher, Patch My PC Cloud, or Advanced Insights.

Getting Started
Products
Company
Resources
Additional resources