LogPulse
LogPulse
Get Started
Enterprise-Grade Security

Security at LogPulse

Your log data is critical infrastructure. LogPulse is built from the ground up with security, privacy, and compliance at its core -- so you can focus on insights, not risk.

SOC 2 Type II

In Progress

GDPR Compliant

Compliant

ISO 27001

Planned

HIPAA Ready

Available

Infrastructure Security

Built on hardened cloud infrastructure with defense-in-depth principles at every layer.

Cloud Infrastructure

  • Hosted on AWS EU (Frankfurt, eu-central-1)
  • VPC isolation with private subnets
  • Multi-AZ deployment for high availability
  • DDoS protection via AWS Shield

Encryption

  • Data encrypted at rest with AES-256
  • Data encrypted in transit with TLS 1.3
  • Database encryption with managed keys
  • Certificate management with automatic rotation

Data Protection

Your data is protected with industry-leading encryption, key management, and disaster recovery practices.

Key Management

AWS KMS with automatic key rotation and customer-managed key support

Data Residency

EU by default (Frankfurt). US region available on request for enterprise plans

Backup & Recovery

Automated backups with RPO < 1 hour and RTO < 4 hours

Data Encryption

End-to-end encryption with separate encryption keys per tenant

Application Security

  • OWASP Top 10 protections
  • Input validation and output encoding
  • Rate limiting on all API endpoints
  • CSRF and XSS protection built-in
  • Automated dependency scanning (Dependabot)
  • Annual third-party penetration testing

Access Control

  • Role-based access control (RBAC)
  • SSO / SAML 2.0 integration
  • Multi-factor authentication (MFA)
  • API key scoping with granular permissions
  • Configurable session management
  • Comprehensive audit logging

Compliance

LogPulse is designed to help you meet your regulatory and compliance obligations.

GDPR

Compliant
  • Data Processing Agreement (DPA)
  • Right to deletion (Article 17)
  • Data portability (Article 20)

SOC 2

In Progress
  • Trust Services Criteria aligned
  • Type II audit in progress
  • Continuous monitoring controls

Data Retention

Configurable
  • Customizable retention policies
  • Automated data lifecycle management
  • Secure data deletion with verification

Operational Security

Around-the-clock monitoring and a mature incident response process keep your data safe.

24/7 Monitoring

Continuous infrastructure and application monitoring with automated alerting

Incident Response

Documented incident response plan with defined severity levels and escalation paths

Vulnerability Disclosure

Responsible disclosure program for security researchers and the community

Security Updates

Regular security patches and updates with minimal downtime deployment

Data Processing

We carefully select and monitor our sub-processors to ensure your data is handled with the highest standards.

Sub-processorPurposeLocation
Amazon Web Services (AWS)Cloud infrastructure & hostingEU (Frankfurt)
CloudflareCDN, DDoS protection, DNSGlobal (EU-proxied)
StripePayment processingUS / EU

A Data Processing Agreement (DPA) is available on request for all plans.

Security Inquiries

Have questions about our security practices? Need a copy of our SOC 2 report or DPA? We are happy to discuss your security requirements.

Contact [email protected]

We also operate a bug bounty program. Responsible disclosure reports are welcomed.