Trust center

Trust, in the open.

A security company should hold itself to the highest bar. Here's how we protect your data and your scans.

System status

Full status page
  • Console & API Operational
  • Scan engines Operational
  • AI services Operational
  • Authentication Operational

Encryption everywhere

Data is encrypted in transit (TLS 1.2+) and at rest. Stored credentials are encrypted with envelope keys.

Least-privilege access

Row-level security scopes every record to your organization. Role-based access controls who can do what.

Isolated tenancy

Your projects, scans and findings are logically isolated and never shared across workspaces.

Full audit trail

Every privileged action is recorded in an immutable audit log you can review at any time.

Secure by default

We dogfood SecNxt on SecNxt — our own code and dependencies are scanned continuously.

Responsible disclosure

Found something? Our security team responds fast and credits researchers.

Report a vulnerability

Responsible disclosure helps everyone. If you've found a security issue in SecNxt, we want to hear from you.

Contact our security team

Questions about security?

SOC 2 letters and our security whitepaper are available on request.

Request documentation