Security at Metorial

Your data is yours. Protecting it is our top priority, with encryption, isolation, and compliance built into the platform.

Everything is encrypted

Secrets and data are encrypted in transit and at rest, with keys you control.

  1. Vault

    Credentials and secrets are stored encrypted, with every access logged. Metorial Vault.

  2. KMS

    Keys are managed and rotated through KMS, so you control what protects your data.

Every integration is sandboxed

Integrations never share an environment, and nothing talks to anything by default.

  1. Enclaves

    Each provider runs in its own isolated enclave, separate from your systems and other integrations.

  2. Firewalls

    Firewalls limit what each integration can reach on the network.

Keep data where you want it

Run Metorial in our cloud or yours, in the region you choose.

  1. On-prem

    Run Metorial on-prem in your own cloud or data center, so data never leaves your perimeter.

  2. EU and US regions

    Choose EU or US regions for data residency.

Compliance

Independently audited, with the documentation security and procurement teams ask for.

SOC 2 compliance badge

SOC 2 Type 2

Independently audited for security, availability, and confidentiality. Reports under NDA.

Security across the platform

The controls that keep agent access tied to identity, screened, and reviewable.

Access Control

Access tied to identity.

Protoguard

Screens every request.

Tracing

See every action.

Frequently asked questions

Common questions about how Metorial keeps agent access secure.

  1. How is our data encrypted?
    Secrets and data are encrypted in transit and at rest, with secrets stored in Vault and keys managed through KMS.
  2. Yes. Each integration runs in its own enclave, with firewalls limiting what it can reach.
  3. Yes. Run Metorial on-prem in your own cloud or data center.
  4. In EU or US regions, your choice.
  5. Yes, SOC 2 Type 2. Reports are available under NDA.
  6. Yes, with a DPA and a published subprocessor list.
  7. Protoguard screens every request and blocks prompt injection before it reaches your tools.

Roll out AI your security team approves

See how Metorial encrypts your data, isolates every integration, and runs in your cloud.