Enterprise-Grade Security, Built In From Day One
Every byte of your backup data is protected with military-grade encryption, zero-knowledge architecture, and certified compliance frameworks.
Compliance Certifications
SOC 2 Type II
Independently audited security, availability, and confidentiality controls. Request our SOC 2 report by contacting our security team.
GDPR Ready
Full GDPR compliance with EU data residency, Data Processing Agreement (DPA) templates, and right-to-erasure support per Article 17.
HIPAA Compliant
Business Associate Agreement available. PHI backup with full audit logs and role-based access controls to meet HIPAA requirements.
ISO 27001
Certified information security management system (ISMS) with annual third-party audits. Certificate available upon request.
Zero-Knowledge Architecture
Your data is encrypted before it ever leaves your environment. SecondSky uses a zero-knowledge model — we hold the infrastructure, but your encryption keys remain exclusively under your control.
- In-Transit: TLS 1.3 with perfect forward secrecy
- At-Rest: AES-256-GCM with unique per-tenant keys
- Key Management: Customer-managed keys via AWS KMS / Azure Key Vault
- Key Rotation: Automatic every 90 days
Infrastructure Security
Immutable Storage
Backup data is stored with object-lock policies — once written, it cannot be altered or deleted by anyone, including SecondSky staff. Ransomware cannot touch your archives.
Data Residency
Choose where your backup data is stored: US, EU, UK, Canada, or Australia. Data never crosses regional boundaries without explicit consent.
Full Audit Logs
Every backup, restore, admin action, and login is logged with timestamps, IP addresses, and user attribution. Immutable audit trail for compliance and forensics.