Security Standards

As a provider of cloud services, Pump adheres to several cybersecurity frameworks to ensure our customers can operate their digital workloads in a safe and secure environment.

In addition to rigorous adherence to AWS best security practices, Pump maintains compliance with several other security frameworks, including:

• SOC 2

• ISO 27001

• GDPR

• AWS Well-Architected Framework

Billing level-only permissions

We also limit permissions so that Pump can only access your billing data and infrastructure metadata. Pump does not take permissions to view any application data or user data in your workloads.

For information, please see our Role Deployment and Permissions Page.

App authentication and authorization

Pump uses Auth0 as the authentication provider for users to verify email and log into the platform. Auth0 is compliant with most established security frameworks, and certifications can be viewed on their website here.

Security auditing

Pump engages third-party companies to conduct regular penetration testing to identify any potential security risks.