Update production-hardening.mdx

docs/self-hosting/guides/production-hardening.mdx

@@ -694,4 +694,20 @@ For enterprise deployments requiring compliance certifications:
 
 ### Standards Compliance
 
-**FIPS 140-3 Compliance**. Infisical is actively working on FIPS 140-3 compliance to meet U.S. and Canadian government cryptographic standards. This will provide validated cryptographic modules for organizations requiring certified encryption implementations.
+#### FIPS 140-3 Compliance
+
+Infisical is compliant with FIPS 140-3, meeting U.S. and Canadian government cryptographic standards through validated cryptographic modules.
+This certification is designed for organizations that require government-approved encryption implementations.
+To deploy a FIPS-compliant instance, use the `infisical/infisical-fips` Docker image, available to Enterprise customers.
+Our FIPS 140-3 attestation letter is available in the [Infisical Trust Center](https://trust.infisical.com/).
+
+#### SOC 2 Compliance
+
+Infisical is SOC 2 compliant, demonstrating adherence to rigorous security, availability, and confidentiality standards established by the American Institute of CPAs (AICPA).
+This certification validates our security controls and operational practices for organizations requiring third-party audited security assurance. Our SOC 2 report is available in the [Infisical Trust Center](https://trust.infisical.com/).
+
+#### HIPAA Compliance
+
+Infisical is HIPAA compliant, meeting the security and privacy requirements of the Health Insurance Portability and Accountability Act.
+This compliance framework ensures appropriate safeguards for protected health information (PHI) for healthcare organizations and their business associates.
+Our HIPAA certification is available in the [Infisical Trust Center](https://trust.infisical.com/).