Encryption
- TLS 1.2+ for all traffic in transit; HSTS enforced.
- Encryption at rest for databases and storage (Azure-managed).
- Customer Azure credentials are stored encrypted and are never exposed back through the API.
Security & privacy
Anubion reads your Azure compliance posture, so we hold ourselves to the same standards we help you meet. This page describes how the platform protects your data, where it lives, and which agreements govern it.
Controls that protect your organization's data throughout the platform.
Anubion runs on Microsoft Azure in the European Union. Customer data (accounts, compliance results, and encrypted connection credentials) is stored and processed within EU data center regions.
We keep the list of third parties that may process customer data deliberately short.
| Subprocessor | Purpose | Location |
|---|---|---|
| Microsoft Azure | Cloud hosting, database, and storage for the platform | European Union |
| Azure Communication Services | Transactional email (invitations, password resets, notifications) | European Union |
The legal framework that governs how we process your data.
Our standard DPA covers GDPR processing terms, technical and organizational measures, and subprocessor commitments. Download the DPA (PDF).
We collect only what the service needs. Erasure and export requests are handled via support@anubion.io. Cookie practices are described in the cookies & privacy section.
Found a security issue? Email support@anubion.io with details. We respond to verified reports and keep you informed through remediation.
We are happy to walk your security team through the platform, complete vendor questionnaires, and review the DPA together.
Send us a message about pricing, rollout, or security reviews.
We use this information only to respond to your inquiry.
Want to try the product first? Start a 14-day free trial on our homepage