Balena Trust Center
Balena is committed to ensuring the confidentiality, integrity, and availability of your data. Here is how we protect information and comply with industry standards and regulations.
See our compliance
Compliance
ISO 27001
Coming soon... ISO/IEC 27001:2022 information security, cybersecurity and privacy protection
Monitoring
Continuously monitored by Secureframe
Subprocessors
AWS
Cloud Hosting
Github
Backend for balena Platform
Cloudflare
Cloud infrastructure
Mailgun
Cloud infrastructure
Maxmind
Cloud infrastructure
Packet
Cloud infrastructure
Sentry
Cloud infrastructure
Discourse
Community forum software provider
Dropbox sign
Contract signature processor
Security Acknowledgments
At Balena, we welcome collaboration with external security researchers who discover vulnerabilities in our platform. We encourage researchers to responsibly introduce themselves and work with us to address issues. Please contact us at [email protected] to report potential vulnerabilities, or for further information about our responsible security disclosure process.
Last Updated: June 14, 2024
Name | Affiliation | Contribution | Disclosure Date | Resolution Date |
---|---|---|---|---|
Marco Jansen of Lorkeers | ThreatLabs | Marco reported a vulnerability in the 2FA recovery key management. We have implemented a mitigations. | April 22, 2024 | June 14, 2024 |
Marco Jansen of Lorkeers | ThreatLabs | Marco reported a vulnerable gap in the 2FA setup. We have implemented a mitigation. | May 22, 2024 | May 30, 2024 |