Skip to content
Why Your Board Sees Different Numbers Than You Do — Feb 26, 2026Watch Now
SOC 2Certified

Enterprise-Grade Security
You Can Trust

Keboola is built from the ground up with security at its core. Your data is protected by industry-leading security measures, compliance certifications, and continuous monitoring.

Security DocumentationRequest Security Assessment

Industry-Leading Compliance

SOC II Type

SOC II Type

Independently audited annually for security, availability, and confidentiality controls

GDPR

GDPR

Full EU data protection compliance with Data Processing Agreements available

HIPAA

HIPAA

Business Associate Agreements available for healthcare data privacy compliance

Choose the Deployment

Flexible Deployment Options

Choose the deployment model that best fits your security requirements, compliance needs, and infrastructure preferences.

Multi-Tenant SaaS

Most Popular

Hybrid Model

Best of Both

Single-Tenant Private

Enterprise
Data Storage Location
Managed by Keboola
Your Snowflake/BigQuery Account
Your Cloud Account (in VPC)
Control Panel
Shared (Logically Isolated)
Shared (Logically Isolated)
Dedicated (in your VPC)
Data Residency Control
High (Region-specific)
Absolute (Your DWH)
Absolute (Your VPC)
Network Isolation
Standard SaaS Security
Standard SaaS Security
Full (VPC, Private Link)
Management Overhead
None
Minimal (DWH only)
Low (Cloud infra only)
Time to Value
Hours
Days
Weeks
Typical TCO
$
$$
$$$

All deployment options include enterprise-grade security, 24/7 monitoring, and dedicated support.

Security Architecture

A comprehensive, defense-in-depth approach to protecting your data across every layer.

Data Protection

End-to-end encryption for data at rest and in transit using AES-256 and TLS 1.3 protocols.

AES-256 encryption
TLS 1.3 in transit
Encrypted backups

Network Security

Multi-layered network architecture with advanced threat detection and DDoS protection.

VPC isolation
WAF protection
DDoS mitigation

Access Control

Granular role-based access with SSO integration and multi-factor authentication.

RBAC
SSO/SAML 2.0
MFA enforcement

Monitoring & Audit

Real-time threat monitoring with comprehensive audit logging and alerting.

24/7 SIEM
Audit trails
Anomaly detection

Shared Responsibility Model

Security is a partnership. Here's how we work together to keep your data safe.

Keboola

  • Platform infrastructure security
  • Network isolation and protection
  • Data encryption (at rest & in transit)
  • Security monitoring & incident response
  • Compliance certifications maintenance
  • Vulnerability management & patching
  • Physical data center security
  • Backup and disaster recovery

Customer

  • User access management
  • Strong authentication configuration
  • Data classification & handling
  • API key and credential security
  • Monitoring of user activities
  • Compliance with organizational policies
  • Security awareness training
  • Incident reporting to Keboola

Security Policies

Data Retention Policy
Business Continuity Plan
Request Access
Business Continuity & Disaster Recovery Policy
PHI Data Breach Notification Procedure
Network Security Procedure
Request Access
Information Security Policy
Request Access
Incident Management Policy
Request Access
Data Breach Notification Policy
Request Access

Security FAQs

Keboola holds SOC 2 Type II certification, is fully GDPR compliant, and is HIPAA ready with Business Associate Agreements available. We undergo annual independent audits for security, availability, and confidentiality controls.

All data is encrypted at rest using AES-256 encryption and in transit using TLS 1.3 protocols. Backups are also encrypted. We use industry-standard key management practices with regular key rotation.

Keboola provides granular role-based access control (RBAC), SSO/SAML 2.0 integration, and multi-factor authentication enforcement. You can define custom roles and permissions to match your organization's security policies.

Yes. Keboola offers three deployment options: Multi-Tenant SaaS for quick setup, a Hybrid Model where your data stays in your Snowflake or BigQuery account, and Single-Tenant Private deployment in your own VPC with full network isolation.

Keboola has a comprehensive incident management policy with 24/7 security monitoring, automated alerting, and a defined escalation process. We provide timely notifications to affected customers and conduct thorough post-incident reviews.

Ready to get started? Request free demo, or get in touch, today.

Get in touch