SeerOps

Enterprise-grade security is not optional.

SeerOps is built with security at every layer. Your incident data is sensitive — we treat it that way from day one.

verified_userOWASP ASVS Level 2 shieldSOC 2 Type II — In Progress gavelGDPR Compliant lockTLS 1.3 + Fernet at rest
Security at SeerOps
How we protect your data
lock

Encryption

All data is encrypted both in transit and at rest, with no exceptions.

  • TLS 1.3 enforced on all connections — no fallback to older protocols
  • Fernet symmetric encryption for sensitive fields at rest (API keys, tokens)
  • AES-256 database encryption via Supabase managed PostgreSQL
  • Alert embeddings (768-dim vectors) stored in encrypted pgvector columns
fingerprint

Authentication

Multi-layered authentication with modern security best practices.

  • HttpOnly session cookies — immune to XSS token theft
  • CSRF token validation on all state-changing requests
  • OTP-based email verification for login (no passwords to leak)
  • API key authentication for webhook ingestion endpoints
  • Rate limiting on all authentication endpoints via SlowAPI
dns

Infrastructure

Hosted on trusted, managed infrastructure with minimal attack surface.

  • Supabase (managed PostgreSQL + pgvector) in EU-West-1 (Ireland)
  • Railway for application hosting with automatic TLS termination
  • All infrastructure within EU jurisdiction for GDPR compliance
  • No self-managed servers — reduced operational security burden
  • Automated backups with point-in-time recovery
admin_panel_settings

Access Control

Fine-grained permissions ensure the right people see the right data.

  • Role-Based Access Control (RBAC) — Owner, Admin, Approver, Viewer
  • SSO domain auto-join for seamless team onboarding (as Viewer role)
  • Full tenant isolation — data is partitioned by tenant_id at the database level
  • Subdomain routing with reserved namespace protection
  • Audit trail for all administrative actions
verified

Compliance

Working toward industry-standard certifications and regulatory compliance.

  • SOC 2 Type II certification on our roadmap for 2027
  • GDPR-compliant data processing — EU-only storage, data portability, right to erasure
  • Data Processing Agreement (DPA) available for enterprise customers
  • No cross-tenant data sharing or model training
  • 90-day data retention after account cancellation with export option
bug_report

Vulnerability Management

Proactive security scanning powered by our own Guardian AI agent.

  • Guardian agent performs automated dependency scanning via OSV database
  • CVE monitoring with severity classification and remediation guidance
  • Security headers enforced: X-Frame-Options, CSP, HSTS, X-Content-Type-Options
  • Input validation and sanitization on all API endpoints
  • AI prompt injection guardrails on all LLM-facing endpoints
All systems operational — Last security scan: Today

Questions about our security?

We are happy to discuss our security practices in detail. Reach out to our team.

Contact Us

Accessibility

Font Size
High Contrast