We’re excited to announce that Stately Cloud has achieved SOC-2 Type 1 compliance! This is a significant milestone for us as we continue to build a database platform that developers trust with their most critical data.
For those who aren’t familiar with compliance frameworks, SOC-2 (Service Organization Control 2) is a widely recognized auditing standard developed by the American Institute of CPAs (AICPA). It’s specifically designed for service providers storing customer data in the cloud.
In plain English: SOC-2 means we’ve had independent auditors verify that we have proper controls in place to ensure the security, availability, and confidentiality of your data.
This matters because:
At Stately, we believe that developers should be able to change their minds. Our Elastic Schema makes it easy to evolve your data model as your needs change. But one thing that should never change is your confidence in how we handle your data.
Security has been a priority from day one. Our team previously worked at companies like Amazon and Snap, where we built and operated services at massive scale with strict security requirements. We’ve brought those same principles to Stately.
We understand how important robust security and privacy controls are for enterprise customers, and achieving SOC-2 compliance represents a significant milestone in our mission to build a database platform that can be trusted with mission-critical data.
For our current customers, this certification validates the trust you’ve already placed in us. For prospective customers, especially those in regulated industries or with strict vendor security requirements, SOC-2 compliance removes a significant barrier to adoption.
If your organization requires vendors to be SOC-2 compliant, you can now confidently move forward with StatelyDB, knowing that we meet industry standards for security and privacy controls.
We’re also launching a new Trust Center, powered by Vanta, where you can learn more about our security practices and request a copy of our SOC-2 report.
The Trust Center provides transparency into our:
SOC-2 Type 1 is just the beginning. This certification verifies that our controls are properly designed. We’re already working toward SOC-2 Type 2 certification, which will verify that these controls are operating effectively over time.
We’re committed to continuous improvement of our security posture and will continue to invest in the tools, processes, and people needed to keep your data safe.
Whether you’re using our fully managed StatelyDB service or our Bring Your Own Cloud (BYOC) deployment option, you can now build with even greater confidence, knowing that your data is protected by enterprise-grade security controls.
We’re excited about this milestone and look forward to continuing to earn your trust every day.
To learn more about our security practices or to request a copy of our SOC-2 report, visit our Trust Center.
Release notes, roadmap, security updates.
