Timescale Logo

Security at Timescale

Timescale is trusted by thousands of customers to run demanding production-level software with security at the heart of everything.

SOC 2

Timescale is SOC 2 Type 2 certified. Our SOC 2 report is available to all customers on our Enterprise plan.

GDPR

Timescale fully complies with GDPR regulations, with all related requests handled via our support.

Backups

All customer databases are continuously backed up to highly durable storage. Point-In-Time Recovery (PITR) is available to all database services.

Encryption in Transit

Timescale uses fully signed certificates and requires secure SSL/TLS encryption for all connections. Database services support the strictest SSL modes available.

Encryption at Rest

All service data, including backups, are encrypted at rest with unique keys specific to each service and automatically rotated on a regular cadence.

Intrusion Detection / Pen test

Timescale runs regular intrusion detection and penetration tests from outside firms to constantly test our services and endpoints for security.

MFA

Timescale offers secure Multi-Factor Authentication (or 2FA) for all customers.

SSO/SAML

SSO/SAML authentication is available to all customers on our Enterprise Plan.

Subprocessors

Timescale keeps the list of data subprocessors updated in the Terms of Service.

Vulnerabilities

Timescale software is constantly monitored by GitHub security tools and code reviews with static analysis.

Data Center Security

Timescale runs all services on AWS data centers which have some of the highest levels of security and reliability available.

Support & Operations

Support is fully staffed 24x7 globally, with SLOs based on issue severity. Contact us for any support and operations requests you have.

Security Assistance

Engineering review for security best practices, making sure your Timescale is deployment secure from unauthorized access, data breaches, and other security threats.

Monitoring

Timescale uses 24/7 on-call rotations with internal escalations to monitor all systems. Subscribe to our status page for system wide alerts.

Payments and PCI

Credit card payments are processed through Stripe without storing personal credit card information. Corporate invoicing is also available to Enterprise Tier customers.

Stripe is a certified PCI Service Provider Level 1, which is the highest level of certification in the payments industry.

Timescale Logo
Need AWS GovCloud, or have ITAR requirements?
By clicking “Send message” I agree to the Terms of Service and acknowledge the Timescale Privacy Policy.
Timescale Logo

Subscribe to the Timescale Newsletter

By submitting, you acknowledge Timescale’s Privacy Policy
2023 © Timescale Inc. All rights reserved.