Announcing SOC2 Compliance: ensuring your internal developer portal is as safe as it should be

Port has achieved SOC2 compliance, highlighting its commitment to security in its internal developer portal offerings. The platform does not store customer credentials and ensures data security through encryption both at rest and in transit, utilizing industry-standard protocols like SSL (TLS v1.2+) and rotating access tokens. Port provides a customizable web interface for managing a software catalog, enabling users to control data exposure, with changes tracked through secure webhooks or message queues. Port's architecture includes a custom agent for handling requests, which facilitates secure self-service actions and notifications, eliminating the need for customers to validate request authenticity. The platform also incorporates Single Sign-On (SSO), Role-Based Access Control (RBAC), and audit logs to prevent unauthorized data access, further solidifying its secure and efficient handling of user data.