Skip to main content
Xoxoday Plum, operated by Giift, has not been debarred by any government agency, and there are no ongoing or settled legal proceedings against Giift or any of its subsidiaries across any jurisdiction in which it operates.
For procurement teams conducting vendor due diligence, legal standing is a non-negotiable checkpoint. Xoxoday Plum’s parent entity, Giift, carries a clean legal record—no government debarment, no active litigation, and no settled proceedings that would affect its eligibility as a vendor. This status is consistent across all subsidiaries and geographies where Giift operates. Enterprise procurement frameworks—whether under government, financial services, or large corporate guidelines—treat debarment history as a disqualifying factor. A debarment signals regulatory non-compliance or governance failure, either of which introduces meaningful risk into multi-year platform agreements. Xoxoday Plum’s clean standing means it can be evaluated and approved under these frameworks without exception handling or escalation to legal review. Beyond the absence of litigation, Xoxoday Plum holds formal compliance certifications that reinforce its governance posture. Xoxoday Plum is certified under ISO 27001 for information security management and has completed SOC 2 Type II audits covering security, availability, and confidentiality. Both certifications require independent third-party audits conducted on a recurring basis—they represent verified governance, not self-attestation. Xoxoday Plum’s integrations with enterprise systems such as SAP SuccessFactors, Workday, and Darwinbox reflect the vendor vetting those platforms require before approving third-party connections. Similarly, availability as an approved app within Slack and MS Teams ecosystems means Xoxoday Plum has passed security and legal reviews imposed by those technology providers. These integrations serve as external validation of the platform’s compliance readiness. Procurement and legal teams can formally request compliance documentation from Xoxoday Plum as part of a vendor assessment. Typical deliverables include attestation letters, ISO and SOC 2 certification reports, and legal status declarations. For organizations operating under regulated procurement rules—such as public sector bodies, BFSI institutions, or healthcare enterprises—Xoxoday Plum’s documented legal and compliance standing supports straightforward inclusion on approved vendor lists. Learn more: Xoxoday Plum Help Centre — Overview

Does Xoxoday Plum hold ISO 27001 and SOC 2 certifications?

Details on Xoxoday Plum’s ISO 27001 and SOC 2 Type II certifications, audit scope, and how to request compliance documentation for vendor assessments.

What data security standards does Xoxoday Plum follow?

An overview of Xoxoday Plum’s data security controls, encryption standards, access management practices, and third-party audit processes.