We meet the most stringent standards of security with SOC 2 Type II compliance with the highest security, confidentiality, availability, and privacy controls based on criteria defined by AICPA (American Institute of Certified Public Accountants). 

Nexla is fully compliant with the European Unions’ Global Data Protection Regulation, or GDPR. Nexla makes no copies of your data as it ingests, processes, and delivers the data to your users and applications.

State of the art credential vaulting ensures that data access is always secure. Nexla Enterprise customers benefit from the choice of bringing their own vaulting mechanisms.

Protect personal identification information (PII) from access using data hashing features. The hashing algorithm is developed considering 256-bit SHA strings to mask sensitive user information from consumers.

The choice of running your data processing in a regional infrastructure is entirely yours. All secure mechanisms of connectivity to your internal systems are supported including SSH, VPN, Bastion host.

With continuous containers scans, code scans, and routing penetration tests by independent security experts, we fulfill our commitment to a state of zero-vulnerabilities. 

Each connector on the Nexla platform is individually authenticated using protocols like TLS1.2, SSH-2, and IPSec. All the connectors are monitored by engineers for vulnerabilities to ensure no data leaks happen.  

Data controls are always in the hands of users. Nexla doesn’t store any data records, only a part of the data is read and further actions are performed during the flow. Data teams can control access based on user requirements. 

See a complete lineage and access log down to individual records, ensuring private data is only accessible to the right people. Share and revoke access at any time so security doesn’t hold back collaboration.