Security banner

Security is Core to How We Operate

Chronosphere is committed to the security of your data.

We use best-in-class security technologies, policies, and controls to ensure a culture of security. We embed security into our system design and processes from the start.

How We Ensure the Security and Privacy of Your Data

Compliance

Access

Data

Culture

Assessment

soc2 compliance badge

Meeting Compliance Standards

  • Chronosphere is SOC 2 Type 2 audited. To request our report, please reach out to your assigned account manager
Tech controls icon

Authentication and Access Management

  • Chronosphere follows the least access principle when provisioning access to employees. Only the required permissions, and with approval, are provided to employees
  • Quarterly user access reviews are conducted for production systems. Upon leaving, access is removed, and any workstations are returned and securely wiped
Privacy icon

Data Security

  • All customer data is encrypted at rest and in transit using industry standard encryption protocols such as TLS and AES
  • Chronosphere securely manages all encryption keys and access to encryption keys follows the least access principles, consistent with SOC 2 controls
Physical Controls icon

Embedding Security into Culture

  • Security is an integral component in our architecture and development processes and is always built in from the start, rather than bolted on afterwards. All pull requests are required to go through code reviews and dependency analysis
  • All employees are required to undergo information security training upon onboarding and on an annual basis thereafter
Admin controls icon

Continuous Vulnerability Assessment

  • Chronosphere conducts vulnerability scanning and external penetration tests on a regular basis. All findings are documented, reviewed, and remediated according to our internal standards. Vulnerability assessments are available upon request
  • Chronosphere requires all applicable third-parties to undergo a security and privacy review upon onboarding and on a regular cadence thereafter

Privacy and Legal

Please see here for Chronosphere’s privacy policy

Chronosphere columns

Get in Touch

Reasonable Disclosure

Chronosphere takes any security and product defect seriously and wants to ensure they are fixed accordingly. As such, we have developed a Reasonable Disclosure policy which can be seen here.

Contact Us

For any further questions, please either contact your assigned Technical Account Manager if you are a current customer.

Contact our security team directly by with the button below: