Skip to main content

Overview

At Openlayer, our number one priority is the security and privacy of our users’ data. Our platform is designed with best-in-class security measures to ensure your data is safe and secure at every layer. This includes state-of-the-art encryption, safe and reliable infrastructure partners, and independently verified security controls.

Authentication Options

Openlayer provides multiple secure authentication methods:
  • Email and Password: Standard authentication with strong password requirements
  • Google SSO: Single Sign-On with Google Workspace accounts
  • SAML SSO: Enterprise-grade Single Sign-On with your identity provider (IdP)
For more information on setting up SAML SSO, including how to authenticate bot users, see our SAML SSO documentation.

Certifications

Openlayer is SOC 2 Type II compliant. To receive a copy of the report, email security@openlayer.com.

Report a Vulnerability

You can read more about reporting any suspected security issues, what’s in scope for reports and other guidelines on our responsible disclosure page.

FAQ

We use Amazon Web Services and our region is US West 2.
All communication outside our cloud environment is encrypted. In addition, our databases are encrypted at rest.
Yes, you can assign users an admin, member, or viewer role. Admins have the ability to invite and suspend members, create and delete secrets, and delete commits, projects, workspaces. Viewer have read-only access to projects and workspaces.
Yes, you can self-host Openlayer with a single command. Reach out to us at sales@openlayer.com for instructions.
Yes, Openlayer supports SAML SSO with all major identity providers. This allows your organization to authenticate users through your IdP, providing enhanced security and a streamlined login experience. See our SAML SSO documentation for setup instructions.