Trust Center

Security you can trust

We take security seriously. Here's how we protect your data and maintain your trust.

Encryption

All data is encrypted in transit with TLS 1.3 and at rest with AES-256. API keys and secrets are stored in encrypted vaults.

Authentication

Enterprise SSO via SAML 2.0. Multi-factor authentication available for all accounts. JWT-based session management with automatic token rotation.

Access Control

Role-based access control (RBAC) with granular permissions. SCIM 2.0 provisioning for automated user lifecycle management.

Infrastructure

Hosted on AWS with multi-region redundancy. DDoS protection via Cloudflare. Automated backups with point-in-time recovery.

Monitoring & Logging

Real-time threat detection and alerting. Comprehensive audit logs for all user and admin actions. 90-day log retention (365 days for Enterprise).

Compliance

GDPR compliant with data processing agreements available. PII redaction tools for sensitive content. Data residency options for Enterprise.

Certifications & Compliance

We're committed to meeting the highest standards of security and compliance.

GDPR
Compliant
SOC 2
In Progress
CCPA
Compliant
HIPAA
Enterprise

Questions about security?

Contact our security team at security@creativeengine.app