Security & Trust

Enterprise-Grade Security for Your Infrastructure

Your cluster data is your business. EcoScale is architected with zero-trust principles, end-to-end encryption, and strict compliance controls.

Encryption at Rest & In Transit

All data encrypted with AES-256 at rest and TLS 1.3 in transit. Your Prometheus metrics, configuration, and reports are protected end-to-end.

SOC 2 Type II Compliant

EcoScale undergoes annual SOC 2 Type II audits. We maintain strict security controls across availability, confidentiality, and processing integrity.

SSO & RBAC

SAML 2.0, OIDC, and SCIM provisioning support. Role-based access controls with granular permissions for team management and audit trails.

Audit Logging

Comprehensive audit logs of all API actions, configuration changes, and user activities. Logs are immutable and retained per your policy.

Data Residency & Isolation

Multi-tenant with strict data isolation. Choose US, EU, or APAC data residency. Each customer's data is logically separated at the application layer.

Uptime SLA

99.99% uptime SLA for our control plane with 24/7 monitoring, automated failover, and guaranteed response times for critical incidents.

Compliance & Certifications

We Take Security Seriously

Our security program is built on industry-standard frameworks. We undergo regular third-party penetration testing, vulnerability assessments, and compliance audits.

SOC 2 Type II

Annual audit covering security, availability, and confidentiality.

GDPR Compliant

Full compliance with GDPR data protection requirements for EU customers.

Penetration Testing

Quarterly third-party pen tests and continuous vulnerability scanning.

Bug Bounty Program

Invite-only bug bounty program with responsible disclosure policy.

Need More Information?

Our security team can provide our SOC 2 report, penetration test results, and complete security documentation.

Contact Security Team