SECURITY

How we protect your data.

Security is foundational to AgentShield. We handle sensitive infrastructure data during scans, and we take that responsibility seriously. Here is how we approach it.

Encryption

  • All data encrypted in transit using TLS 1.3
  • Data at rest encrypted using AES-256
  • Database connections secured with SSL certificates
  • API keys and secrets stored in encrypted vaults

Access Control

  • Role-based access control (RBAC) for all platform features
  • Multi-factor authentication available for all accounts
  • Session management with configurable timeout policies
  • Audit logging for all administrative actions

Customer Data Handling

  • Scan data processed in isolated, ephemeral environments
  • No customer data used for model training or improvement
  • Data retained only for the duration specified in your plan
  • Discovery tier: 7-day retention. Pilot tier: duration of pilot + 30 days

Infrastructure

  • Hosted on SOC 2 Type II certified cloud infrastructure
  • Network segmentation between customer environments
  • Regular penetration testing by independent third parties
  • Automated vulnerability scanning on all production systems

Incident Response & Vulnerability Disclosure

We maintain a documented incident response plan and conduct regular tabletop exercises. If you discover a security vulnerability, please report it responsibly.

[email protected]

Need our full security package?

We provide a detailed security questionnaire response, DPA, and infrastructure documentation for enterprise review.

Request Security Package

Last updated: March 2026. For questions, contact [email protected]