Security and Trust Center
At PingCAP we value security and trust more than anything because we know our customers entrust us with their most important asset - the data itself. We take this responsibility seriously and are always dedicated to protecting the Security, Availability, and Confidentiality of our customers’ data. We have incorporated security into all aspects of our offering (TiDB Cloud) and operations.
Key Security Features
TiDB Cloud is designed with strict security measures in all aspects that are aligned with the market, so that you can focus on your data, not protecting it.
Data access controls
- VPC peering connection
- IP allowlist
- In-transit encryption (TLS/SSL)
- Encryption at rest (AES256) for TiKV, TiFlash, and backup data.
- Inter-node identity authentication (mTLS)
- Client identity authentication
Dedicated VPC for your TiDB clusters to guarantee data confidentiality and integrity.
We are committed to providing enterprise-grade security and privacy. This is not simply demonstrated in technology. We undergo third-party auditing to ensure our services and operations adhere to the compliance requirements of your organization. TiDB Cloud operates in accordance with the following compliance requirements:
SOC 2 Type 1 Report
→ Learn More
The SOC 2 Type I audit is an independent audit designed and conducted by Schellman & Company, LLC based on the security & privacy related control and operations of the TiDB Cloud service offering and the standards formulated by the American Institute of Certified Public Accountants (AICPA).
More compliance audits are in progress...