Security Policy

Prismatic ensures the security of user data through a series of robust practices, policies, and infrastructure measures, emphasizing their commitment as of December 1, 2021. Hosted on Amazon Web Services (AWS), Prismatic's platform utilizes a virtual private cloud with private subnets for enhanced security, while integration execution environments are isolated to prevent unauthorized access. Data encryption is enforced using TLS1.2 or later for data in transit and at rest, and sensitive information such as credentials is securely managed with AES-256 encryption, with strict access controls. Prismatic supports secure user authentication via Auth0 and encourages users to adopt best practices in information security, regularly update contact information, audit user roles and permissions, and report any security concerns. They hold a SOC 2 Type 2 certification, underscoring their compliance with stringent data security standards, and invite users to report vulnerabilities through secure communication channels.