Security at Cotera

At Cotera, keeping your data secure is our top priority.

Overview

Cotera is built by a team of experienced software and data engineers. Keeping our customers' data secure is our top priority, and always will be. We're SOC2 Type II certified and can provide a copy of our latest audit report upon request.

We are also happy to provide detailed information about the full suite of policies and controls we implement. Here are some of the highlights:

Security Program Highlights

You Own Your Data

Cotera is built to work against a data warehouse, which either we can provide or you host yourself. The data is always stored in that data warehouse and never in Cotera's systems.

Data Security

All data is encrypted both at rest and in transit. We rely on Google Cloud's Key Management to encrypt our keys and require the use of the latest encryption standards such as AES-256.

Application Security

We follow a rigorous and audited secure development process. Additionally, we use static security analysis tools such as Dependabot and Google's Container Scanning service to secure our product at every step of the development process.

Infrastructure Security

Cotera uses Google Cloud Platform (GCP) to host our application. We leverage GCP's Kubernetes engine to ensure that all the latest hardening standards are in place for our infrastructure.