We are committed to safeguarding our customers' data through industry standards, compliance certifications, and third-party audits.
We aim to meet our customers’ compliance needs by certifying our products and services against industry compliance requirements and regularly performing third-party security audits.
Yes, we are SOC 2 Type 1 compliant and undergoing Type 2 certification.
Yes, we are GDPR compliant, however, we currently only support data residency in the U.S.
Yes, we are CCPA compliant.
Chainguard is actively pursuing ISO 27001 certification.
We only process or share data for purposes based on legitimate business interests, contract fulfillment, legal obligations, or customer consent.
Navigate to Chainguard subprocessors for the most recent list.
View our privacy policy to learn how we handle customer data in our products and on our public websites.
We don’t have a bug bounty yet. If you find an issue in our products or sites, report it to our team.
Be on the lookout for emails from Chainguard.
