Platform and ecosystem

StoreConnect is built natively on Salesforce — not integrated with it. Every object, field, and record is a standard or custom Salesforce object. This means the entire Salesforce platform is available as an extension layer: flows, triggers, APIs, AppExchange apps, and AI tools all work with StoreConnect data without custom middleware.

Salesforce extensibility

Because StoreConnect data lives in Salesforce, you extend and automate your commerce operation using standard Salesforce tools — not StoreConnect-specific APIs.

  • Salesforce flows — build no-code automations triggered by any store event: order placed, subscription renewed, booking confirmed, loyalty points earned
  • Apex triggers — write custom logic in Apex that fires on any StoreConnect object change
  • Platform events — publish and subscribe to real-time events from store activity for integration with external systems
  • Experience Cloud — embed StoreConnect store functionality within a Salesforce Experience Cloud site, or use Experience Cloud for authenticated customer portals alongside StoreConnect
  • Service Cloud — cases, telephony, and Omni-Channel routing are native Salesforce features available to StoreConnect customers
  • CRM Analytics — connect store data to Tableau CRM dashboards and Einstein Discovery models
  • Agentforce — surface store and customer context to Agentforce AI agents for service, sales, and self-service scenarios
  • AppExchange — any AppExchange app that works with standard Salesforce objects works with StoreConnect data

See extensible-with-salesforce.

Authentication providers

StoreConnect supports multiple authentication methods for customer login and B2B portal access.

  • Native account creation — standard email and password registration
  • Google SSO — customers can sign in with their Google account
  • Microsoft Entra ID / Azure AD — enterprise SSO via Microsoft identity, suitable for B2B portals and internal-facing stores
  • SAML — standards-based SSO for custom identity provider integrations
  • Experience Cloud SSO — share authentication sessions with a Salesforce Experience Cloud site
  • Role-based store permissions — control which authenticated users can access which stores or products

See authentication-providers.

Security and compliance

StoreConnect is certified and audited across the major compliance frameworks that enterprise and regulated-industry customers require.

  • SOC 2 Type II — independently audited security controls
  • ISO 27001 — information security management certification
  • HIPAA — controls appropriate for healthcare-adjacent use cases
  • GDPR — data residency is determined by your Salesforce org's data centre; no separate StoreConnect data store exists outside Salesforce
  • PCI-compliant payment handling — card data is handled by integrated payment providers and never stored in Salesforce or StoreConnect
  • Data encryption — data at rest and in transit is encrypted per Salesforce platform standards

See security-compliance-features for certification details and the enterprise-guide for architecture context.

Infrastructure and support

  • Dedicated servers — Emporium and Flagship plan customers receive dedicated server infrastructure rather than shared tenancy
  • CDN for media — product images and assets are served via CDN for performance
  • 24×7 monitoring — platform monitoring and incident response
  • Disaster recovery — recovery processes and RPO/RTO targets as per plan tier
  • Annual updates — StoreConnect releases major updates on an annual cycle, with interim patch releases

See technical-support-features.

Set this up

Last updated March 26, 2026

Related Articles

DocumentationExtensible with SalesforceDocumentationSecurity compliance featuresDocumentationTechnical support featuresDocumentationAuthentication providers and single sign-on (SSO)DocumentationEnterprise guideDocumentationCRM data reporting