We take security seriously. Your data and privacy are protected by industry-leading security measures and compliance standards.
All data is encrypted at rest using AES-256 encryption and in transit using TLS 1.3.
Your scan data and credentials are stored in secure, isolated database instances with automatic backups.
Role-based access control (RBAC) ensures users only access resources they are authorized to see.
Multi-factor authentication (MFA) and SSO support for enterprise customers.
Hosted on enterprise-grade cloud infrastructure with 24/7 monitoring and automated security updates.
Regular security audits and penetration testing of our own platform to ensure maximum security.
Our development process follows security best practices including code reviews, automated security testing, and regular security audits. All code changes undergo thorough security review before deployment.
Credentials used for authenticated scanning are encrypted at rest and never logged. They are only used during active scans and are never exposed in reports or APIs.
All scan traffic originates from dedicated IP addresses that can be whitelisted. Network isolation ensures scan containers cannot access internal infrastructure.
We have a comprehensive incident response plan with 24/7 monitoring. In the unlikely event of a security incident, affected customers will be notified within 72 hours.
Contact our security team for more information about our security practices and compliance.
Contact Security Team