Security
Security at InfraHQ
Security is at the core of everything we build. Here's how we protect your data.
AES-256 Encryption
All cloud credentials are encrypted at rest using AES-256 encryption. Keys are rotated regularly.
Read-Only Access
We only request read-only permissions to your cloud accounts. We cannot modify, create, or delete any resources.
No Data Storage
We analyze your cloud data in real-time and do not permanently store your resource information.
SOC 2 Compliance
Our infrastructure and processes follow SOC 2 Type II requirements for security, availability, and confidentiality.
Report a Vulnerability
If you discover a security vulnerability, please report it to support@infrahq.com. We take all reports seriously and will respond within 24 hours.