Compliance & Certifications
Compliance & Certifications
SOC 2 Type II
Vault Integration Supports:
-
Security (CC6.1) - API keys hashed with bcrypt, stored in Vault
-
Security (CC6.6) - Rate limiting prevents abuse
-
Security (CC6.7) - Audit logging tracks all API key operations
-
Confidentiality (CC7.2) - API keys transmitted over HTTPS only
ISO 27001
Vault Integration Supports:
-
A.9.4.2 - Secure log-on procedures - API key authentication
-
A.9.4.3 - Password management system - bcrypt hashing, Vault storage
-
A.12.4.1 - Event logging - Comprehensive audit trail
-
A.14.2.5 - Secure system engineering principles - Least privilege, rate limiting
GDPR
Vault Integration Supports:
-
Article 32 - Security of Processing - Encryption (HTTPS), access control (scopes)
-
Article 25 - Data Protection by Design - Secure by default (HTTPS, hashing, rate limiting)