We work with independent third-parties who regularly assess our site for vulnerabilities. Plus, our&nbsp;external&nbsp;bug bounty program rewards independent security researchers if they report detected security issues.</p> External Security Auditing <p>Credit Karma, Inc. reviews its online credit management services and systems as well as supporting technologies for ISO27001 (certification&nbsp;details here), and compliance with SOC 2.</p> We hope that this has helped you better understand Credit Karma’s efforts to protect your data.