Our next-gen architecture is built to help you make sense of your ever-growing data. Watch a 4-min demo video!

Coralogix Security & Compliance

At Coralogix our customers’ data security comes first. We believe that excellence as a full-stack observability platform must be based on rock-solid security and compliance.

Below is a list of our security and compliance certifications along with the industry standard best practices that we follow for securing the Coralogix platform.

GDPR Compliance

Our platform and services process data in a framework that ensures the privacy and security of our customers’ data.

ISO/IEC 27001

Certification of our compliance with requirements of ISO/IEC 27001:2013.

ISO/IEC 27701

Certification of our compliance with requirements of ISO/IEC 27701:2019.

ISO/IEC 27017

Certification of our compliance with requirements of ISO/IEC 27017:2015.

ISO/IEC 27018

Certification of our compliance with requirements of ISO/IEC 27018:2019.

Security, Awareness & Training​

  • Protect sensitive information regarding HIPAA and PCI-DSS.
  • Provide system and instructions.
  • Assign responsibilities for identifying training needs.
  • Provide the required training for establishing awareness programs.
  • Maintaining training records.

PCI Compliance​

Payment Card Industry (PCI) Data Security Standard Self-Assessment

HIPAA​

Compliance with applicable rules and regulations of the Health Insurance Portability and Accountability Act (HIPAA) of 1996 as a Business Associate.

Business Continuity Plan​

In the event of a disaster which interferes with Coralogix’s ability to provide its services, this plan is to be used by the responsible individuals to coordinate the business recovery of their respective areas and/or departments.

Data Processing Addendum​

An integral part of our Service Agreement

Incident Management Procedure​

The Incident Management process is a component of Coralogix’s Information security program.

Information Security Policy​

This policy sets forth the framework for Coralogix’s compliance with the Security Rule of HIPAA and PCI DSS.

Physical Security Policy​

This policy establishes a policy for mitigating the risks from physical security and environmental threats through the establishment of an effective physical security and environmental controls program.

Risk Assessment Methodology​

The purpose of this document is to define the methodology for assessment and treatment of information risks in Coralogix, and to define the acceptable level of risk according to security laws, regulations and standards including HIPAA and PCI-DSS.

Service Organization Control SOC 2 Report Type 2

Service audit conducted by BDO based on the SOC framework

Security & Availability Measures

Coralogix security and availability overview presentation

Development Lifecycle

Document Development Life Cycle (DDLC)

User Access Management

Coralogix’s procedures for the allocation of user access rights to information systems and services

Human Resources Security Policy

Our policy outlining a user’s access to information or information systems used to deliver Coralogix’s business

Authorized Sub Processors

List of authorized Sub Processors