Customer data is encrypted at rest, access to that data by support staff is strictly controlled by access control mechanisms and robust write-only logging is present across the entire stack.
All HTTP connections are encrypted using TLS.
Additionally, customers on our Enterprise plan can request their data to be housed in managed, isolated tenants.
SOC 2 Type 2 audit results are available to customers on our Enterprise plan. On our most recent annual SOC 2 audit, we had zero exceptions.
See Private Endpoints for using a private network to your database using AWS PrivateLink.We use Private Endpoints instead of VPC peering, to ensure that no other resources are exposed between VPCs.