Security

Security is foundational to Noros. We've built the platform with enterprise-grade protections to ensure your cloud data remains private, isolated, and under your control at every step.

Platform Security

• Dedicated environments — Separate development, test, and production environments with strict access controls

• Least-privilege IAM — Every component operates with the minimum permissions required

• Internal security audits — Regular audits of code, infrastructure, and access patterns

• External penetration testing — Third-party security assessments to identify and address vulnerabilities

• Comprehensive logging — Full audit trails for all system activity

• SOC 2 Type I certified — Independently verified security controls and practices

Customer Data Segregation

Every Noros customer operates in a fully isolated environment:

• One billing account per Noros account — Your data is never co-mingled with other customers

• No cross-customer access — Noros enforces strict boundaries between customer environments at every layer

• Domain-scoped accounts — Each organization has its own Noros account tied to its corporate domain

Encryption

• At rest — All data encrypted with AES-256

• In transit — All communications secured with TLS 1.3

Compliance

Noros maintains compliance with industry security standards:

• SOC 2 Type I — Certified as of May 2024

• GDPR compliant — Data handling practices aligned with European privacy regulations

• CCPA compliant — California Consumer Privacy Act compliance

Learn More

• AI Use & Data Security → — How Noros uses AI and protects your data

• Multi-Factor Authentication → — Add an extra layer of security to your account

• Single Sign-On → — Configure SSO for your organization