Security at IcePanel

System design communication should be transparent amongst teams, but that's where the data stays.

In a nutshell... here's what we do

Data encrypted
Data is encrypted in transit, rest & storage
Access control
Access control with authentication & single sign on
Investing in security
In progress
Monitored by Vanta
We're investing heavily in our security practices
Hosted on
Industry leding security standards provided by Google

Out of a nutshell... what else are we doing

View security trust report
People
Random passwords, 2FA and SSO enforced
Organizational policies reviewed annually
Risk assessments completed annually
Vendor security reviewed
Change control procedures
Application
TLS 1.2/1.3 encryption in transit & rest
Passwords are hashed & salted
Single sign on (SAML 2.0) Growth plan+
Penetration testing performed annually
Automate vulnerability scanning
Data
Data is encrypted server-side
256-bit AES encryption
Backups daily & regular restoration testing
Access logs retained
Isolated Environment
Optional on enterprise plan
Single-tenant environment
Configurable cloud location GCP locations
Additional network configuration
Customer managed encryption keys

Have further questions around our security practices?