Security & Privacy at Additive
Security is the foundation of what we do — protecting our customers' data is at the heart of every tool we build to accelerate them forward.
Security and Compliance
Additive will soon be maintaining a SOC 2 attestation, a compliance standard from the American Institute of Certified Public Accountants.
All datastores with customer data are encrypted at rest. Additive uses TLS 1.2 or higher everywhere data is transmitted over potentially insecure networks.
Additive will be engaging with top-tier penetration testing consulting firms at least annually. Additive also requires vulnerability scanning at key stages of our Secure Development Lifecycle (SDLC).
All corporate devices are centrally managed, and remote access to critical systems is secured with single-sign on and multi-factor authentication. All employees undergo regular security trainings.
Additive is always open to feedback, questions, and suggestions. If you would like to talk to us, please feel free to email us at firstname.lastname@example.org.