Enterprise-grade security. By design.
Your documentation files never leave your infrastructure. Dokumen runs locally in your CI pipeline—only API calls reach our servers, never your content.
Certifications & Compliance
We maintain industry-leading certifications and compliance standards to protect your data.
SOC 2 Type II
PlannedSecurity controls for availability and confidentiality. Audit in progress.
GDPR
CompliantFull compliance with EU data protection regulations. Data processing agreements available.
CCPA
CompliantCalifornia Consumer Privacy Act compliance for US customers.
Security Architecture
Multi-layered security controls protect your data at every level.
Files Stay Local
Your documentation files never leave your infrastructure. Only API calls to our endpoint—your content stays in your CI runner.
Encryption at Rest
All metadata encrypted using AES-256 encryption.
Encryption in Transit
TLS 1.3 for all data transmission with perfect forward secrecy.
Zero Data Retention
Your documentation content is never stored after tests complete.
Private Deployment
Self-hosted option available for enterprise customers requiring on-premise.
Enterprise Access Controls
Fine-grained access controls for teams of any size.
Role-Based Access
Granular permissions with admin, editor, and viewer roles.
Personal Access Tokens
Secure PAT-based authentication for API and CLI access.
Audit Logging
Complete audit trail of all actions with exportable logs.
Have security questions?
Our security team is available to discuss your specific requirements, provide security documentation, or answer any questions.