Security & Compliance
Enterprise-grade security features and compliance posture
Security Highlights
Encryption
TLS 1.3 for external connections. Istio service mesh with mTLS between services. Encryption at rest for all stored data.
Data Privacy
Your graph data remains in your infrastructure. Only metadata stored in GraphPolaris. EU data residency available.
Authentication
Secure session management. JWT-based API auth. Role-based access control. SSO integration available.
Data Protection
| What | How |
|---|---|
| External traffic | TLS 1.3, HTTPS only |
| Internal services | mTLS via Istio service mesh |
| Stored data | Cloud provider encryption at rest |
| Your graph data | Stays in your infrastructure |
Network Security
- Web Application Firewall (managed deployments)
- Kubernetes Network Policies
- Private endpoints for databases
- Rate limiting and DDoS protection
Compliance
Current:
- EU data residency (Web Version)
- GDPR certification in progress
- Privacy by design principles
- Data Processing Agreement available upon request
Infrastructure:
- Leverages Azure's ISO 27001, SOC 2, HIPAA-compliant infrastructure
Secrets Management
- No secrets in code
- Kubernetes Secrets or Azure Key Vault
- Managed identities for secure access
- Environment variable injection
Incident Response
For security inquiries or to report incidents: contact us
Enterprise customers receive direct access to our security team.
Documentation
Security questionnaires and compliance documentation available upon request. Contact your account representative.