Hasura Cloud is SOC 2 Type II Compliant
To achieve our SOC 2 Type II certification, we have implemented an exhaustive list of security controls including technical safeguards like penetration testing by an independent security firm, vulnerability scans and encryption, and process measures such as security training and disaster recovery planning. The audit report is available on request, under an NDA.
Hasura Cloud is HIPAA Compliant
Hasura Cloud’s HIPAA compliance has been audited by an independent third party, and includes controls just as stringent as that of healthcare organizations to protect the privacy, security, and integrity of protected health information (PHI). As part of Hasura Cloud’s Enterprise plan, we can also sign Business Associate Agreements (BAA) with our customers as needed.
Hasura is Regularly Penetration Tested
We regularly undergo penetration testing by an independent security firm as part of our SOC 2 process and can provide findings to customers as required under NDA.
We are happy to arrange custom DPAs where required.
Hasura is ISO certified
Hasura, Inc operates an Information Security Management System that conforms to the requirements stated in the standard: ISO/IEC 27001:2013 supporting the Hasura GraphQL Engine. We achieved multi-site certification, covering our primary office locations in San Francisco, United States and Bangalore, India.