Security You Can Trust
We take security seriously. Lither is built with enterprise-grade security at its core, ensuring your data and workflows are protected at every level.
Security at Every Layer
End-to-End Encryption
All data encrypted with AES-256 at rest and TLS 1.3 in transit.
SOC 2 Type II
Independently audited security controls for trust and assurance.
GDPR Compliant
Full compliance with EU data protection regulations.
Role-Based Access
Granular permissions and SSO integration for enterprise teams.
Audit Logging
Complete audit trails for compliance and security monitoring.
24/7 Monitoring
Real-time threat detection and automated incident response.
Our Security Practices
Infrastructure Security
- Hosted on enterprise-grade cloud infrastructure (DigitalOcean, AWS)
- All servers deployed in secure, SOC 2 compliant data centers
- Automated security patching and vulnerability scanning
- Network segmentation and firewall protection
- DDoS protection and rate limiting
- Redundant systems with 99.9% uptime SLA
Data Encryption
- Encryption at Rest: AES-256 encryption for all stored data
- Encryption in Transit: TLS 1.3 for all API communications
- Secret Management: API keys and credentials encrypted with customer-specific keys
- Database Encryption: Full disk encryption on all database servers
- Backup Encryption: All backups encrypted and stored in geographically separate locations
Access Control
- Single Sign-On (SSO): SAML 2.0 and OAuth 2.0 support for enterprise identity providers
- Multi-Factor Authentication: TOTP-based 2FA for all accounts
- Role-Based Access Control: Granular permissions at organization, project, and resource levels
- Session Management: Configurable session timeouts and concurrent session limits
- API Key Scoping: Fine-grained permissions for API access
Monitoring & Audit
- Comprehensive Audit Logs: All user actions and system events logged
- Real-time Monitoring: 24/7 infrastructure and application monitoring
- Anomaly Detection: AI-powered threat detection and alerting
- Log Retention: Configurable retention periods (7-365 days)
- SIEM Integration: Export logs to your SIEM (Enterprise plan)
Incident Response
- Incident Response Plan: Documented procedures for security incidents
- Response Time: 24/7 on-call security team with <15 minute response SLA
- Communication: Transparent incident communication via status page
- Post-Incident: Root cause analysis and remediation for all incidents
- Regular Drills: Quarterly incident response exercises
Vulnerability Management
- Penetration Testing: Annual third-party penetration tests
- Dependency Scanning: Automated scanning of all dependencies for vulnerabilities
- Code Review: Mandatory security review for all code changes
- Bug Bounty: Responsible disclosure program for security researchers
- Patch Management: Critical vulnerabilities patched within 24 hours
Certifications & Compliance
We maintain industry-leading certifications to ensure your data is protected according to the highest standards.
SOC 2 Type II
Annual third-party audits verifying our security, availability, and confidentiality controls.
ISO 27001
International standard for information security management systems.
GDPR
Full compliance with European data protection regulations.
HIPAA
Healthcare data protection for covered entities (Enterprise plan).
Data Residency & Sovereignty
Available Regions
- EUEuropean Union (Frankfurt, Amsterdam)
- USUnited States (New York, San Francisco)
- UKUnited Kingdom (London)
- SGSingapore (Coming Soon)
Data Isolation
Enterprise customers can choose single-tenant deployment with complete data isolation and custom security configurations.
- Dedicated database instances
- Isolated network environments
- Customer-managed encryption keys
- Private link connectivity
Security Questions?
Our security team is available to discuss your requirements and provide additional documentation.
Security Team
security@lither.appReport a Vulnerability
Responsible DisclosureData Protection Officer
dpo@lither.appFastlane Grupp OÜ
Sepapaja tn 6, Lasnamäe linnaosa, Tallinn, 15551, Estonia