Our products and services are transforming the sales and marketing industries with the Inbound revolution, but the backbone of our success is providing a safe and trustworthy place for your marketing and sales data. Protecting your data is our obsession.
Customer Protection at the Core
At the heart of our ability to deliver world-class products and support is our world-class employees. All employees undergo extensive vetting and 3rd party background checks prior to being extended an offer.
Highly available. Consistently hitting 99.99% uptime.
Customer data is 100% backed up to multiple online replicas with additional snapshots and other backups. Never lose contact info again!
Our always-on operations teams monitor platform and application behavior 24x7x365 for baked-in security awareness.
Proactive customer notifications. Your site, marketing campaigns, and sales activities are as critical to us as they are to you. If there’s ever a customer-impacting situation, we will make you aware of it on our Trust site and will keep you continually updated.
Product & Application Security
Sessions between you and your portal are always protected with top end in-transit encryption, advanced TLS (1.0, 1.1, and 1.2) protocols, and 2,048-bit keys.
Web Application Firewall (WAF) technologies identify and block attacks before they reach the front door.
High quality from birth to deploy. Automated static code analysis, using an industry-leading solution, alongside human review ensures development best practices are implemented across our thousands of monthly code pushes.
Our third party Distributed Denial of Service (DDoS) services protect your site and access to your products from attacks designed to keep you out.
Advanced logging, alerting, and aggregation: we log all the things. Propriety monitoring and log aggregation solutions are embedded by default throughout the HubSpot products, providing instantaneous and consistent anomaly alerting.
Infrastructure & Data Center Security
HubSpot’s products are hosted with the world’s leading data center providers. Access to these data centers is strictly controlled and monitored by 24x7 on-site security staff, biometric scanning and video surveillance. Our data center partners are SOC 2 Type II and ISO 27001 certified and provide N+1 redundancy to all power, network, and HVAC services.
Multi-location geographic diversity. Our hosting strategy includes geographically separate as well as multi-vendor hosting for our product suite. HubSpot’s infrastructure lives in three distinct geographic regions and five availability zones, making sure your lead generation and sales support are available whenever you are.
Redundant everything. Databases, application servers, web servers, jobs servers, and load balancers as well as backend support services all have multiple failover instances to prevent outage from single points of failure.
Enterprise-grade firewalls, routers, and Intrusion Prevention Systems (IPS) protect our infrastructure and thwart network-based attacks.
HubSpot’s continual vulnerability scanning process looks for flaws in our product and corporate infrastructures along with validating security hardening best practices are in place. Ensuring resilience in all layers of the technology stack.
Flexible infrastructure. Our highly automated server infrastructure is designed with rapid provisioning and de-provisioning principles. Server instances are automatically and consistently built and torn down within minutes as needed to size the infrastructure appropriately and respond to customer needs.
Responsive and repeatable incident management process. Proprietary systems feed anomalies to 24x7 security & operations teams, eliminating security concerns at the first sign.
HubSpot’s rapid patch management process pushes all the latest security updates fast. Patching is generally handled by deploying new server instances with the most up to date patches and de-provisioning out of date servers, as opposed to traditional and slow patching processes.
Constant State of Improvement
We maintain relationships with industry-respected 3rd party penetration testing firms to keep us guessing and improving our posture. Third-party pentests are held four times annually.
In addition to in-house and 3rd party programs, HubSpot crowd-sources vulnerability discovery with its bug bounty program. Professional security researchers are invited and rewarded for helping us spot potential flaws.
Don’t Take Our Word for It
In addition to building the best-in-breed platform, HubSpot takes our security responsibilities to you seriously. Don’t take our word for it, though. We are TRUSTe certified for EU Safe Harbor, Privacy, and Trusted Cloud (in the EU? please check out our Model Clauses). HubSpot was also certified “Enterprise Ready” by leading cloud risk and governance company, SkyHigh. Additionally, our trusted data center partners maintain ISO 27001 and SOC 2 Type II compliance.