Security
Security is foundational to Noros. We've built the platform with enterprise-grade protections to ensure your cloud data remains private, isolated, and under your control at every step.
Platform Security
Dedicated environments — Separate development, test, and production environments with strict access controls
Least-privilege IAM — Every component operates with the minimum permissions required
Internal security audits — Regular audits of code, infrastructure, and access patterns
External penetration testing — Third-party security assessments to identify and address vulnerabilities
Comprehensive logging — Full audit trails for all system activity
SOC 2 Type I certified — Independently verified security controls and practices
Customer Data Segregation
Every Noros customer operates in a fully isolated environment:
One billing account per Noros account — Your data is never co-mingled with other customers
No cross-customer access — Noros enforces strict boundaries between customer environments at every layer
Domain-scoped accounts — Each organization has its own Noros account tied to its corporate domain
Encryption
At rest — All data encrypted with AES-256
In transit — All communications secured with TLS 1.3
Compliance
Noros maintains compliance with industry security standards:
SOC 2 Type I — Certified as of May 2024
GDPR compliant — Data handling practices aligned with European privacy regulations
CCPA compliant — California Consumer Privacy Act compliance
Learn More
AI Use & Data Security → — How Noros uses AI and protects your data
Multi-Factor Authentication → — Add an extra layer of security to your account
Single Sign-On → — Configure SSO for your organization
Last updated

