SECURITY ARCHITECTURE

Governance is not a promise. It's an architectural property.

Security, compliance, and data governance built into every layer of the Stackmint platform.

SECURITY ARCHITECTURE

Isolated by design

  • Tenant isolation with dedicated namespaces
  • Network isolation between all execution contexts
  • Namespace-per-partner isolation model
  • Pod security policies enforced at runtime

DATA GOVERNANCE

Your data, your rules

  • Encryption at rest and in transit (AES-256, TLS 1.3)
  • Full data lineage for every execution
  • Configurable retention policies per capability
  • Right to erasure support (GDPR Article 17)

COMPLIANCE

Compliance by construction

  • EU AI Act ready — risk classification and reporting
  • GDPR compliant — data processing agreements included
  • RBAC/ABAC access control at every level
  • Immutable audit trail for all executions

HUMAN IN THE LOOP

Accountability requires human judgment

  • Configurable gate types for different decision levels
  • Approval workflows with escalation paths
  • Kill switches at run, Branch, and organization level

CERTIFICATIONS

Certifications roadmap

SOC2 Type II — Infrastructure built to SOC2 standards. Formal audit period scheduled Q3 2026.

ISO 27001 — Architecture aligned to ISO 27001 controls. Certification in planning.

TRANSPARENCY

Radical transparency

Subprocessors list available on request
GDPR commitment and DPA available
Data residency options (EU preferred)

Security inquiries

For vulnerability reports, compliance questions, or data processing inquiries:

security@stackmint.io