Security
Security is at the core of everything we do. Learn about the measures we take to protect your data and infrastructure.
Encryption at Rest
All data is encrypted using AES-256 encryption. AWS credentials are stored with additional encryption layers.
Encryption in Transit
All communications use TLS 1.3. We enforce HTTPS for all connections to our platform.
Credential Security
AWS credentials are encrypted and never logged. We use IAM roles with minimal required permissions.
Access Controls
Role-based access control (RBAC) with audit logging. Multi-factor authentication available for all accounts.
Infrastructure Security
Hosted on secure cloud infrastructure with regular security patches, firewalls, and intrusion detection.
Regular Audits
We conduct regular security audits and penetration testing. Vulnerabilities are patched promptly.
Data Handling
KeelPilot processes infrastructure metadata and metrics from your AWS environment. We do not access, read, or store the contents of your applications, databases, or user data. Our access is limited to the AWS APIs necessary to provide monitoring, alerting, and management features.
Compliance
We follow industry best practices and are working toward SOC 2 Type II compliance. Our infrastructure is designed to help you maintain compliance with GDPR, HIPAA, and other regulatory requirements.
Responsible Disclosure
We appreciate the security research community. If you discover a security vulnerability, please report it to security@keelpilot.io. We commit to acknowledging your report within 48 hours and working with you to resolve the issue.
Questions?
For security-related inquiries, contact us at security@keelpilot.io