Data Protection

  • Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • SOC 2: Type II audit in progress—expected Q4 2025
  • Compliance: GDPR & CCPA compliant; DPA available on request

Authentication & Access Control

  • Single Sign-On: Okta, Azure AD integration on Scale & Dedicated tiers
  • Role-Based Access: Project Creator and Reviewer roles with granular permissions
  • API Security: Bearer token authentication with rate limiting
  • Audit Logs: Complete activity tracking and compliance reporting

Self-Hosting Options

Available for Dedicated plans:

  • Kubernetes Helm chart deployment
  • Managed VPC setup
  • On-premises installation support
  • Air-gapped environment compatibility