
Trust & Security
Superblocks is deeply committed to security, which is woven into the fabric of our operations, products, and services. We prioritize confidentiality, integrity, and availability to safeguard information.
Trusted by industry leading companies
Compliance
Superblocks deeply values the trust of our clients, partners, and stakeholders. To keep this trust, we are firmly committed to high compliance standards, focusing on data security, availability, integrity, confidentiality, and privacy.

SOC 2 Type II
Superblocks has successfully undergone a thorough SOC 2 Type II audit by a trusted independent third party, confirming that our product, infrastructure, and policies meet the rigorous standards for SOC2 compliance.

HIPAA
Superblocks is HIPAA compliant and can support HIPAA customers with a properly executed Business Associate Agreement. The Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires appropriate safeguards to protect the privacy of PHI.
Contact the Superblocks security team at trust@superblocks.com
Our dedicated security team is committed to addressing your concerns with the highest level of priority and care.

Core security principles
Superblocks employs stringent security protocols, including regular audits and promoting a security-aware culture, to safeguard customer information from evolving threats. We restrict data access, secure data both in transit and at rest, and proactively monitor and address security alerts.
Limited access
We subscribe to the principle of least privilege. Access to sensitive information is limited to only authorized personnel.
Encryption everywhere
We encrypt all data in transit using TLS 1.3 and data at rest using AES-256.
24/7 Monitoring and alerting
Superblocks on-call engineers monitor our production environment and respond to issues in real time.
Security is a journey
We always strive to improve security, recognizing it as a critical, never-ending endeavor.

Security features
Our enhanced security suite includes unified access control for centralizing governance and auditing. The agent is fully open-source and can be self-hosted for maximum data security.

Keep your data in your network
Self-host an agent to keep all of your data inside your network/VPC. Superblocks will never have access to your data. For more information please see our On-Premise Agent (OPA) documentation.
