Security, privacy and compliance
Fluent’s data privacy and security practices adhere to rigorous enterprise standards, including our infrastructure, data policies and internal corporate processes.
Our security policies are supported by continuous vulnerability tests, and annual exercises as dictated by SOC 2 Type II requirements.
Read more about Fluent's security practices and compliance measures below.
SOC 2 Type II Compliance
Fluent is in the process of achieving SOC 2 Type II compliance. We are happy to share our SOC 2 Type 2 progress with qualified customers, by sharing access to our Vanta account. You can email firstname.lastname@example.org to request this.
We use Render as our cloud provider. We use the Ohio and Frankfurt regions for the US and EU regions of Fluent respectively. Render is SOC 2 Type II compliant.
Does Fluent backup data?
Yes, we backup data daily and store it in a separate region.
Yes. Data is encrypted at rest (AES-256) and in transit (HTTPS/TLS).
Securing our cloud environment
Access to our cloud services, source code, third-party tools etc. are secured with 2FA.
What are Chanel's practices for reacting to security incidents?
We take security very seriously. We review security issues as soon as we learn about them. We let our users know if they are affected by any security incident.
Has Fluent deployed firewalls and intrusion detection and prevention systems in your environment?
Our network is fully operated by Render which has a firewall and IDS/IPS running in their network.
How often is Fluent performing vulnerability scans and penetration tests on your own infrastructure?
Fluent is using GitHub to store our source code. GitHub provides a vulnerability feed of issues that become known in third party software dependencies used by our source code. We also use a product called Intruder.io to perform automated vulnerability scans on our infrastructure. This happens weekly and we are notified of any issues.
Who should I reach out to if I have a security question about Fluent?
If you notice a security issue or have a question or concern, you can reach out to us at email@example.com and we'll respond as soon as possible. Details on Fluent's bug bounty program can be found here.