Yammer

Safety, security & privacy

We understand that security is your priority. It’s our priority too. That’s why we use advanced security technology to protect your Yammer network’s data.
Yammer

Safety, security & privacy

We understand that security is your priority. It’s our priority too. That’s why we use advanced security technology to protect your Yammer network’s data.
Two men standing in a light-filled office, studying papers on a conference table.
Two men standing in a light-filled office, studying papers on a conference table.
HideShow
Security & control

Single sign-on (SSO)

Yammer supports SAML 1.1/2.0-based SSO on all web, desktop, and mobile clients.

Password policies

Set password policies for length, expiration, and complexity to match your company password policies.

Session management

Session management tools let admins see the devices users are logged into, and log them out if needed. Admins can close open sessions for any users in their network by destroying OAuth tokens.

Logical firewall

Restrict access to a specified IP range so that your network is only accessible in designated physical locations or through your organization’s VPN.
Contact us

Contact us

If you would like to report a security issue, contact us at security@yammer-inc.com.
If you would like to report a Bug Bounty issue, please see the program terms.
HideShow
Data protection

Secure connections

All connections to Yammer are secured via SSL/TLS. Any attempt to connect over HTTP is redirected to HTTPS.

Encrypted email transport

If your servers support TLS encrypted email, any data sent from Yammer by email will be delivered using encrypted transport.

Application security

Yammer is built according to secure development best practices with security reviews incorporated throughout the design, prototyping and deployment process.

Customer data protection

We classify and treat all data as confidential, using inbound and outbound low-level logical firewalls to ensure that data cannot be leaked between Yammer networks. Sensitive production data is never migrated or used outside of the production network.

Separate application and data servers

The web application servers of Yammer are physically and logically separated from servers that store customer data.

Data center security

Yammer is operated out of Microsoft's global network of data centers with 24/7/365 video surveillance, biometric and pin-based locks, strict personnel access controls and detailed visitor entry logs.

Internal & third-party testing

We routinely run internal and external vulnerability scans and penetration tests and work with third-party firms for in-depth quarterly security reviews.

Business continuity

Your data is backed up multiple times a day and protected with strong encryption on disk. Backups are transferred off-site over SSH and properly deleted after six months.
Contact us

Contact us

If you would like to report a security issue, contact us at security@yammer-inc.com.
If you would like to report a Bug Bounty issue, please see the program terms.
HideShow
Independently verified

ISO 27001 certification

ISO 27001 is the global standard in information security. Independent auditors have verified that Yammer meets the rigorous set of physical, logical, process, and management controls defined by the ISO 27001 standard.

Office 365 bug bounty

Yammer is participating in the Microsoft Online Services Bug Bounty, which allows thousands of security researchers to test Yammer and help make our products even safer for users.
Contact us

Contact us

If you would like to report a security issue, contact us at security@yammer-inc.com.
If you would like to report a Bug Bounty issue, please see the program terms.

Single sign-on (SSO)

Yammer supports SAML 1.1/2.0-based SSO on all web, desktop, and mobile clients.

Password policies

Set password policies for length, expiration, and complexity to match your company password policies.

Session management

Session management tools let admins see the devices users are logged into, and log them out if needed. Admins can close open sessions for any users in their network by destroying OAuth tokens.

Logical firewall

Restrict access to a specified IP range so that your network is only accessible in designated physical locations or through your organization’s VPN.

Contact us

If you would like to report a security issue, contact us at security@yammer-inc.com.
If you would like to report a Bug Bounty issue, please see the program terms.
Contact us

Secure connections

All connections to Yammer are secured via SSL/TLS. Any attempt to connect over HTTP is redirected to HTTPS.

Encrypted email transport

If your servers support TLS encrypted email, any data sent from Yammer by email will be delivered using encrypted transport.

Application security

Yammer is built according to secure development best practices with security reviews incorporated throughout the design, prototyping and deployment process.

Customer data protection

We classify and treat all data as confidential, using inbound and outbound low-level logical firewalls to ensure that data cannot be leaked between Yammer networks. Sensitive production data is never migrated or used outside of the production network.

Separate application and data servers

The web application servers of Yammer are physically and logically separated from servers that store customer data.

Data center security

Yammer is operated out of Microsoft's global network of data centers with 24/7/365 video surveillance, biometric and pin-based locks, strict personnel access controls and detailed visitor entry logs.

Internal & third-party testing

We routinely run internal and external vulnerability scans and penetration tests and work with third-party firms for in-depth quarterly security reviews.

Business continuity

Your data is backed up multiple times a day and protected with strong encryption on disk. Backups are transferred off-site over SSH and properly deleted after six months.

Contact us

If you would like to report a security issue, contact us at security@yammer-inc.com.
If you would like to report a Bug Bounty issue, please see the program terms.
Contact us

ISO 27001 certification

ISO 27001 is the global standard in information security. Independent auditors have verified that Yammer meets the rigorous set of physical, logical, process, and management controls defined by the ISO 27001 standard.

Office 365 bug bounty

Yammer is participating in the Microsoft Online Services Bug Bounty, which allows thousands of security researchers to test Yammer and help make our products even safer for users.
Contact us
If you would like to report a security issue, contact us at security@yammer-inc.com.
If you would like to report a Bug Bounty issue, please see the program terms.
Contact us
{"pmgControls":[{"functionName":"AddDynaCss","params":"#RemoveClass|pmg-list-inline-block-middle|680"}]}
{"pmgControls":[{"functionName":"AutoMiddle","params":".pmgJS-frame|.pmgJS-target"},{"functionName":"HorizontalTab","params":"#pmgJS-HorizontalTab|.pmgJS-HTabBtn|.pmgJS-HTabCnt|pmgJS-HTabSelected|"},{"functionName":"Accordion","params":".pmg-mobile-accordion-wrapper|.pmg-mobile-accordion-btn|.pmg-mobile-accordion-content|.pmg-mobile-accordion-showIcon|.pmg-mobile-accordion-hideIcon|.showHideAll|680"}]}