Build.io Security

Last updated: Jan 9, 2025

At Build.io, protecting your data is at the core of our mission. We understand the critical importance of securing your information and have implemented robust measures to ensure its safety. Our commitment to security drives everything we do, empowering you to confidently manage your data within a trusted environment.

Data Encryption

We employ SSL/TLS encryption across all websites and microservices to meet the highest security and data protection standards. Sensitive data, such as connection credentials, is encrypted both in transit and at rest using industry-standard algorithms. Additionally, we continuously audit our encryption protocols to ensure your data remains secure.

Physical Security

Build.io partners with industry-leading colocation providers, Equinix and Digital Realty, to ensure your data is housed in secure, state-of-the-art facilities. These Tier IV data centers undergo stringent compliance audits and maintain multiple security certifications, including:

  • SOC 2
  • SOC 3
  • PCI DSS
  • ISO 9001
  • ISO 14001
  • ISO 27001

For detailed information, visit the compliance pages of Equinix and Digital Realty.

Network Security

We implement multiple layers of defense to protect our systems and your data:

  • Firewalls: Control both inbound and outbound traffic through whitelist/blacklist filtering to prevent unauthorized access.
  • Network Segmentation: Logical separation of public and private subnets using Layer 2/3 network equipment. Kubernetes clusters employ namespaces for enhanced segmentation.
  • Intrusion Detection System (IDS): Our SIEM IDS leverages eBPF and audit logs, analyzing events against the MITRE ATT&CK framework to detect and respond to threats proactively.

Security Penetration Testing

To identify and address potential vulnerabilities, Build.io undergoes annual penetration testing conducted by a trusted third-party security firm. These tests utilize cutting-edge tools and methodologies to assess our network. Any vulnerabilities identified are immediately addressed by our in-house security and network experts.

Access to Reports: Customers may request penetration testing reports under a signed NDA.

Expert Security Team

Build.io's security team is led by our Chief Information Security Officer (CISO) and Data Protection Officer (DPO), who hold certifications such as CISSP™ and CREST CPSA™. Our in-house team includes experienced professionals with certifications like CREST CRT™, ensuring best practices in scanning, penetration testing, and remediation.

Privacy

Your privacy matters to us. For detailed information on how we manage and protect your personal data, please refer to our Privacy Policy.

Support and Contact Information

Security Inquiries: For security-specific questions, please contact us at security@build.io.

Support and Other Inquiries: For support and non-security-related questions, email us at support@build.io.