Honeybadger

Safe and secure by design

HB and your data

The security of your data is our top priority at Honeybadger. Here's how we keep your data safe and secure.

Honeybadger has your back

We're dedicated to providing a service that is secure and reliable. You need peace of mind that your data is safe with us, and we don't take that responsibility lightly. Questions? We'd love to speak with your security team. Get in touch →

SOC2 Type II

Honeybadger is SOC2 Type II certified. Please contact us to obtain our report.

GDPR

We comply with Europe's General Data Protection Regulation (GDPR). Learn more

HIPAA

We also support HIPAA via a standard Business Associate Agreement (BAA). Please contact us for more details.

SOC2 and AICPA compliance certification badges

Trusted by:

Company logos: Wistia, eBay, Digital Ocean, Workable, Zappos, Thoughtbot

Data security at Honeybadger

We know how critical it is to keep your data safe. That's why our comprehensive policies and controls ensure that security is built-in to every component of our systems.

Data encryption in transit and at rest

Data transmitted between Honeybadger's web application and APIs is protected via SSL/TLS. Customer data is stored in encrypted format using software supporting the Advanced Encryption Standard (AES).

Secure and hardened infrastructure

Our AWS-native infrastructure is protected by network isolation and restrictive firewalls and access controls. Automated systems monitor for network intrusion and other suspicious activity, and we perform regular pen testing.

Redundancy and reliability

Redundancy is baked in to every component of Honeybadger's systems, with replication across multiple availability zones. Our infrastructure is fully automated, and we regularly test disaster recovery scenarios.

Organizational and information security

Honeybadger's remote team uses best practices such as local encryption and two-factor authentication, and employees receive regular security training covering topics like physical security and data protection.
Learn more about our security policies →

Keep your personal data private

You don't have to send personal data to Honeybadger to use our service. All of our SDKs are open source and available on GitHub. We scrub sensitive data like password, tokens, and credit cards by default, and make it easy to remove personal data that is specific to your app. 

Honeybadger.configure({
  filters: ['password', 'credit_card', 'ssn'];
});

Security controls baked in

Honeybadger includes all the tools you need to control access to your data.

SAML and SSO

Log in to Honeybadger using third-party identity providers like Google Apps for Work, Okta, or OneLogin, and customize the sign-in page.

Audit controls

Access a detailed log of user activity across your Honeybadger account to review important events.

Multi-region hosting

Choose to store your data in the European Union or the United States to meet your company's data residency requirements. Learn more

Restricted authentication

Restrict logins to specific identity providers, configure custom session timeouts per provider, and more.

User access controls

Restrict access to account resources by user role, team membership, or per-resource.

Two-factor authentication

Protect access to your Honeybadger account by enabling two-factor authentication.

Questions? We're here to help.

We love to chat about security at Honeybadger. If your security team has questions, we'd love to talk to them—put them in touch with us!

Talk to our team