Skip to main content
Security at Keeper

How we handle security in our application and our company.

Updated over a week ago

Security at Keeper

We take security very seriously at Keeper and hold ourselves to strict standards when it comes to keeping your and your clients' data secure.

See below for a high level overview of how we we handle security in our application or check out our Trust Center for a detailed breakdown.

If you have any questions or concerns about our practices, please email us immediately at ben.stein@keeper.app.

Standards


Keeper is SOC 2, Type 2 Certified. Please contact your sales representative or CSM for more information and our accreditation report.


Data Storage and Transmission

All data in Keeper is fully encrypted at rest and in transit.

  • At rest:

    • All data on Keeper's servers is encrypted at rest with AES-256, block-level storage encryption (bank-grade encryption)

    • This includes documents and attachments uploaded to Keeper

  • In transit:

    • We employ TLS to ensure all passwords, documents, and financial information stay securely within Keeper


Passwords and Authentication

  • We use Google's Firebase for user auth management

  • They are certified under major privacy and security standards, including ISO 27001, SOC 1, SOC 2, and SOC 3

  • For more information on Firebase's security standards, please see this link

  • Keeper supports two factor authentication for both accountants and clients.


Privacy

  • We do not sell any user data or client financial information.


Backups

Keeper's servers are continuously backed up to minimize risk of data loss.

Did this answer your question?