We’re Serious About Security
We understand that your unstructured data is important to your business. Learn more about how we ensure your data is secure, protected, and available.
Multi-layered Enterprise-grade Security
Security is paramount in everything we do, from our product to our business operations. Zilliz's infrastructure incorporates a multi-layered approach that safeguards data integrity and privacy. Our serverless, single-tenant architecture further enhances data privacy.
Isolated Environment
Zilliz Cloud ensures security by restricting customer access to a Service Proxy layer, protecting the core VPC. For advanced needs, we offer isolated, dedicated clusters for enhanced data protection.
- No direct VPC access
- Physically Isolated dedicated clusters
Data Confidentiality
Zilliz Cloud prioritizes data confidentiality through a combination of secure networking options and robust encryption protocols, both during data transfer and while at rest.
Identity Control and Access Management
Zilliz Cloud employs sophisticated identity control and access management features, leveraging Role-Based Access Control (RBAC) for precise user permissions and OAuth 2.0 for secure, centralized Single Sign-On (SSO) capabilities.
Backup and Disaster Recovery
In the face of unexpected events, our robust backup and restore mechanisms ensure data integrity and availability, facilitating rapid restoration and minimizing potential data loss.
Comprehensive Security Incident Response
When a security vulnerability is identified in Zilliz Cloud, our specialized staff are immediately mobilized to neutralize the threat, safeguarding your data integrity. This rapid response is complemented by automated upgrades and patches, ensuring your databases continually meet the highest security standards. We complete the loop with timely notifications, keeping you informed and confident in your data's safety.
Compliance
Zilliz Cloud is dedicated to continually expanding our suite of security and compliance reports to meet customer requirements. A robust selection of these reports is readily available to our customers, affirming our commitment to compliance and data integrity. For access to these reports, we invite you to contact Zilliz directly or download our trust report and detailed policies.
SOC 2 Type II
Zilliz Cloud’s SOC2 Type II report offers important, third-party validation of our security practices, upheld consistently throughout the reporting period. This report provides a robust, evidence-based evaluation of our commitment to maintaining the highest security standards. By eliminating discrepancies, we aim to offer you enhanced confidence in the security posture of Zilliz Cloud.
ISO/ICE 27001
The ISO/IEC 27001 certification is an international benchmark for Information Security Management Systems (ISMS). Zilliz Cloud's adherence to this standard underscores a systematic approach to managing sensitive data, aligning with global best practices. By meeting this standard, we provide a stronger assurance that your information assets are well-protected.
Privacy
Zilliz is dedicated to transparency in how we manage and process data. Learn more in our Privacy Policy.
GDPR Readiness
The General Data Protection Regulation (GDPR) sets standards for handling and protecting personal data from the European Economic Area (EEA) and ensures individuals’ data rights. Zilliz is GDPR-ready and committed to supporting our customers' compliance efforts.
HIPAA Readiness
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) regulates the protection of the privacy and security of health information. Zilliz is HIPAA-ready, enabling covered entities and their associates to use our secure cloud database to process, maintain, and store protected health information (PHI).
Reliability
Zilliz Cloud commits to 99.95% service uptime through our SLA. Read more about our system availability.
File a security report
If you believe you have discovered a security or privacy vulnerability in Zilliz Cloud, please contact security@zilliz.com