Our Commitment to Security
At Flox, we take security and compliance seriously. We've achieved SOC 2 Type II and ISO/IEC 27001:2022 certifications, demonstrating our commitment to protecting your data and maintaining the highest standards of information security management.
Our Certifications
Flox has undergone rigorous independent third-party audits to achieve these industry-recognized certifications, ensuring we meet the highest standards for security, availability, processing integrity, confidentiality, and privacy. Our compliance with these internationally-recognized standards demonstrates our commitment to information security at every level of our organization.
SOC 2 Type II
Service Organization Control 2 (SOC 2) Type II certification demonstrates that Flox has established and follows strict information security policies and procedures. This certification, performed by independent third-party auditors, validates our controls over security, availability, processing integrity, confidentiality, and privacy of customer data. Our compliance with this standard is evidence of our commitment to information security at every level of our organization.
- Regular independent third-party security audits
- Comprehensive security controls and monitoring
- Data protection and privacy safeguards
- High availability and reliability standards
ISO/IEC 27001:2022
ISO/IEC 27001:2022 is a security management standard that specifies security management best practices and comprehensive security controls following the ISO/IEC 27002 best practice guidance. The basis of this certification is the development and implementation of a rigorous security program, which includes the development and implementation of an Information Security Management System (ISMS) that defines how Flox perpetually manages security in a holistic, comprehensive manner. This widely-recognized international standard specifies that we:
- Systematically evaluate our information security risks, taking into account the impact of threats and vulnerabilities
- Design and implement a comprehensive suite of information security controls and other forms of risk management
- Maintain an overarching management process to ensure that information security controls meet our needs on an ongoing basis
- Protect and manage employee, company, customer, and partner information in accordance with industry-leading best practices
What This Means for You
These certifications provide assurance that Flox maintains robust security controls, protects your data, and follows industry best practices. Whether you're an individual developer or an enterprise team, you can trust that your development environments and data are handled with the highest level of security and care.
Request Compliance Documentation
Customers and prospects can request access to our SOC 2 Type II report and ISO/IEC 27001:2022 certificate. These documents provide detailed information about our security controls, audit processes, and compliance status.
For Customers
Existing Flox customers can request compliance documentation through their account representative or by contacting our security team.
For Prospects
If you're evaluating Flox for your organization, we're happy to share our compliance documentation as part of your security review process.