Security & Compliance

Premium level of security on all accounts

We believe that it doesn’t matter how inexpensive or efficient a solution is if it isn’t secure. To demonstrate our commitment to our customers' information security, we maintain compliance with all major data regulations and are ISO 27001 certified.

We provide a premium level of security on all accounts, regardless of size. To learn more about our ISO 27001 certificate, how to get a SOC 2 report, GDPR DPA or HIPAA BAA, as well as the specifics of the security features that we include on all accounts, read more below.

ISO/IEC 27001:2013

ISO/IEC 27001:2013

Compliant since: 2018
Certificate no. 10305-01

SOC 2

SOC 2

Compliant since: 2019
Contact sales for report

GDPR

GDPR

Compliant since: 2017
Contact sales for DPA

HIPAA

HIPAA

Compliant since: 2018
Contact sales for BAA

Annual security testing

Annual security testing

Latest test: August 2019
View results here

Dedicated virtual machines

Dedicated virtual machines

Some vendors use multi-tenant virtual machines to reduce costs; we deliver all Aiven software on dedicated virtual machines: better security.

End-to-end data encryption

End-to-end data encryption

We enforce TLS for connections used in transferring data and encrypt it while it is on disk. See this article for details.

Complete network security

Complete network security

All Aiven nodes are firewalled and you can specify the IP addresses that users are allowed to connect from.

Automated security updates

Automated security updates

We ensure that your software is up-to-date and automatically install security updates.

Start your free 30 day trial

Test the whole platform for 30 days with no ifs, ands, or buts.