Security
Learn more about our data security practices and compliance measures.
Overview
At Openlayer, our number one priority is the security and privacy of our users’ data.
Our platform is designed with best-in-class security measures to ensure your data is safe and secure at every layer. This includes state-of-the-art encryption, safe and reliable infrastructure partners, and independently verified security controls.
Authentication Options
Openlayer provides multiple secure authentication methods:
- Email and Password: Standard authentication with strong password requirements
- Google SSO: Single Sign-On with Google Workspace accounts
- SAML SSO: Enterprise-grade Single Sign-On with your identity provider (IdP)
For more information on setting up SAML SSO, including how to authenticate bot users, see our SAML SSO documentation.
Certifications
Openlayer is SOC 2 Type II compliant. To receive a copy of the report, email security@openlayer.com.
Report a Vulnerability
You can read more about reporting any suspected security issues, what’s in scope for reports and other guidelines on our responsible disclosure page.
FAQ
Who is your cloud infrastructure provider and what region is your instance located?
Who is your cloud infrastructure provider and what region is your instance located?
We use Amazon Web Services and our region is US West 2.
Is my data encrypted?
Is my data encrypted?
All communication outside our cloud environment is encrypted. In addition, our databases are encrypted at rest.
Do you offer role-based access control (RBAC)?
Do you offer role-based access control (RBAC)?
Yes, you can assign users an admin, member, or viewer role. Admins have the ability to invite and suspend members, create and delete secrets, and delete commits, projects, workspaces. Viewer have read-only access to projects and workspaces.
Can I deploy Openlayer on-premise?
Can I deploy Openlayer on-premise?
Yes, you can self-host Openlayer with a single command. Reach out to us at sales@openlayer.com for instructions.
Do you support SAML SSO for enterprise authentication?
Do you support SAML SSO for enterprise authentication?
Yes, Openlayer supports SAML SSO with all major identity providers. This allows your organization to authenticate users through your IdP, providing enhanced security and a streamlined login experience. See our SAML SSO documentation for setup instructions.