Welcome to Harness's Trust Center. Our commitment to data privacy and security is foundational to our operations. This Trust Center provides insights into our security posture and allows you to request access to our security documentation.
Harness partners with Very Good Security, Inc. (VGS) and Stripe, Inc. to securely capture, transfer, and store sensitive cardholder data while maintaining compliance with industry standards.
VGS enables tokenization and secure routing of sensitive cardholder data, ensuring that Harness never directly stores or processes raw payment data. By isolating and securing this information in encrypted vaults, VGS minimizes risk and enhances compliance with PCI DSS and other regulatory requirements.
Harness has undergone comprehensive security assessments and maintains robust internal controls, as evidenced by our SOC 2 Type 1 certification. Our security controls are designed to align with industry best practices, ensuring that all data processed through our platform is handled with the highest standards of confidentiality, integrity, and availability.
App Security
App Security
We take application security seriously and are putting together a program to monitor internal apps.
Data Privacy
Data Privacy
Privacy of customer data is top of mind. We follow industry best practices and follow all applicable privacy regulations.
Endpoint Security
Endpoint Security
We follow industry best practices for endpoint security. We are happy to provide more details about our endpoint security practices upon request.
Security Grades
Security Grades
We are constantly monitoring the security of our website. We will post our grades from public security rating agencies when they become available.
If you think you may have discovered a vulnerability, please send us a note.