Security & Compliance
DriftRail is built with security-first principles. We protect your AI inference data with enterprise-grade security controls.
Compliance Ready
SOC 2 Type II Ready
Architecture designed to meet SOC 2 Type II requirements for security, availability, and confidentiality.
GDPR Compliant
Built-in data subject rights, retention controls, and data processing agreements available.
HIPAA Ready
HIPAA-compatible architecture with Business Associate Agreements available on Enterprise plans.
Data Protection
Encryption at Rest & In Transit
All data is encrypted using AES-256 at rest and TLS 1.3 in transit. API keys are hashed using bcrypt.
Tenant Isolation
Complete data isolation between tenants using Row Level Security (RLS) policies at the database level.
Immutable Audit Logs
Database triggers prevent tampering with audit records. All changes are logged with timestamps and actor information.
Data Retention Controls
Configurable retention periods with automatic data purging. Enterprise customers can set custom retention up to 7 years.
Infrastructure Security
Cloud Infrastructure
- → Hosted on SOC 2 certified cloud providers
- → Multi-region availability
- → Automated backups with point-in-time recovery
- → DDoS protection enabled
Access Controls
- → Role-based access control (RBAC)
- → SSO/SAML support (Enterprise)
- → API key scoping by environment
- → IP allowlisting available
Have Security Questions?
Our security team is available to discuss your specific requirements and provide additional documentation.
Contact Security Team