Build Trust Center

Build Trust Center

Security & Compliance Information

Announcements

2024 SOC 2 Report Has Been Issued

Published on May 23, 2025

We are pleased to announce that our Service Organization Control (SOC) 2 Type II report for 2024 has been issued and is now available in our Trust Center. This report reflects our ongoing commitment to maintaining the highest standards of security, availability, and confidentiality in our service delivery.

The SOC 2 Type II audit was conducted by an independent third-party auditor and examines the suitability and operating effectiveness of our controls over a period of time. This certification demonstrates our continued dedication to protecting our customers' data and maintaining robust security practices.

For any questions about our security practices, please contact security@build.io.

Security

Build SOC 2 Type 2
Build Security Overview
2024 Penetration Test

Policies

Encryption Policy
Risk Assessment Policy
Incident Response Plan
Data Retention Policy
Data Protection Policy
Data Classification Policy
Vendor Management Policy
Information Security Policy
Acceptable Use Policy

Continuous monitoring

App Security

  • Annual Penetration Tests
  • Employee Disclosure Process
  • Quarterly Vulnerability Scan
  • Responsible Disclosure (Bug Bounty)
  • Software Development Life Cycle Policy
  • Vulnerability Management

Data Security

  • Daily Database Backups
  • Encryption at Rest
  • Security Policies
  • SSL/TLS Enforced
  • System Access Control Policy

Infrastructure Security

  • Cloud Data Storage Restricted
  • Encryption of Web-Based Admin Access
  • Multiple Availability Zones
  • Password Policy
  • Security Patches Automatically Applied

Network Security

  • Denial of Public SSH
  • Firewalls
  • Logging/Monitoring
  • Malware Detection Software
  • Unique Accounts Used

Organization Security

  • Background Checks
  • Code of Conduct
  • Privacy Policy
  • Regular Security Training
  • Role-Based Security Training
  • Security Awareness Program

Subprocessors

Build's List of approved Subprocessors

Subprocessors URL

Amplitude, Inc

Product Analytics
Data location: USA

Twilio

Sending emails
Data location: United States

OpenAI, Inc.

AI Platform
Data location: United States

Fivetran Inc.

Business Analytics
Data location: United States

Zapier

Onboarding automation
Data location: United States

Bugsnag, Inc.

Error Tracking
Data location: San Francisco
Real-time error monitoring and reporting

Privacy details

This privacy policy applies to all of our services and tells you how we collect, use, disclose and protect your Personal Information.

Privacy URL

For security inquiries, contact security@build.io

Ready to turn trust into your competitive advantage? Sprint through security reviews and quickly share key security information with Trust Center. Learn more.