Enterprise security. Startup speed.
We built GridRunner with the assumption that every MSP manages sensitive client infrastructure. Security isn't an add-on — it's the foundation.
AES-256 Encryption
All data encrypted at rest (AES-256) and in transit (TLS 1.3). Database-level encryption via Azure SQL TDE.
Azure Key Vault
Secrets, API keys, and certificates stored in FIPS 140-2 Level 2 validated HSMs. Zero secrets in code.
Tenant Isolation
Every query is scoped to a tenant ID via row-level security. Cross-tenant data access is architecturally impossible.
Full Audit Trail
Every create, update, and delete action is logged with actor, timestamp, IP, and payload diff — immutable and queryable.
RBAC & MFA
Role-based access control with granular permissions. Multi-factor authentication enforced at the tenant level.
SOC 2 Readiness
Built from day one with SOC 2 Type II controls in mind — access reviews, change management, and incident response.
Vulnerability Scanning
Automated dependency scanning, container image scanning, and SAST/DAST in the CI/CD pipeline.
DDoS & WAF
Azure Front Door with Web Application Firewall rules, rate limiting, and geo-blocking at the edge.
Compliance & certifications
We're pursuing the certifications that matter most to MSPs and their enterprise clients.
| Framework | Status |
|---|---|
| SOC 2 Type II | In Progress |
| GDPR | Compliant |
| HIPAA BAA | Available |
| ISO 27001 | Planned |
| PCI DSS | N/A (no card data stored) |
Responsible Disclosure
Found a vulnerability? We take security reports seriously. Email security@gridrunner.ai and we'll respond within 24 hours. We do not pursue legal action against good-faith security researchers.
Security you can trust
Deploy GridRunner knowing your clients' infrastructure is protected by enterprise-grade security controls.