
SOC 2 Type 2
Independently audited for security, availability, and confidentiality. Reports under NDA.
Secrets and data are encrypted in transit and at rest, with keys you control.
Credentials and secrets are stored encrypted, with every access logged. Metorial Vault.
Keys are managed and rotated through KMS, so you control what protects your data.
Run Metorial in our cloud or yours, in the region you choose.
Run Metorial on-prem in your own cloud or data center, so data never leaves your perimeter.
Choose EU or US regions for data residency.
Independently audited, with the documentation security and procurement teams ask for.

Independently audited for security, availability, and confidentiality. Reports under NDA.

GDPR compliant, with a DPA, a subprocessor list, and data retention controls.
The controls that keep agent access tied to identity, screened, and reviewable.
Common questions about how Metorial keeps agent access secure.