logo main
  • Language
    En
    English
    Portuguese
    • Log inGet started free

    Protecting your data. Simplifying your integrations.

    At Albato, safeguarding your data is our top priority. We work with your software provider to offer you one-click, no-code integrations right inside their platform, so you can automate your workflows without hassle.

    #1 product of the day
    #1 product of the day#1 product of the day#1 product of the day
    hero

    250,000+

    users rely on Albato’s embedded integrations every day

    250M+

    transactions flow through our integrations monthly

    2B+

    API calls executed every month

    30,000+

    workflows running across hundreds of SaaS platforms

    99.9%

    integration success rate ensuring business continuity

    Commitment to Security & Compliance

    We follow stringent security practices to keep your data safe. Our approach meets top global standards, ensuring your information stays protected at every stage.

    commitment card
    Policy
    Our data security policies are aligned with industry best practices.
    commitment card
    Measures
    We implement comprehensive security measures against external threats.
    commitment card
    Protocols
    Strict protocols ensure end-to-end data protection.
    commitment card
    GDPR
    Our operations follow European standards for data management and privacy.

    State-of-the-Art Infrastructure

    Our infrastructure is built on trusted security practices, ensuring your data is safe and always accessible.

    previous

    Encryption Standards

    Data at Rest: 256-bit AES encryption.

    Data in Transit: TLS 1.2 and 1.3 with AES 256 encryption.

    Your data is protected both when stored and when traveling across the network.

    embedded.security.blocks.infrastructureSection.slider.card_1.title
    next

    Additional Safeguards

    additional security card

    HTTPS Communications

    Wherever possible, data is exchanged via HTTPS, securing communication with encryption.
    additional security card

    Restricted Access

    Our hosting environment is isolated and accessible only through a private VPN—no direct public internet access.
    additional security card

    Limited Staff Access

    Only authorized personnel can access system logs for troubleshooting and verifying backups.
    additional security card

    Encrypted Backups

    All database backups are encrypted. Decryption keys are stored on a separate, highly secure server for an extra layer of protection.
    Explore our Privacy Policy

    GDPR

    European Standards for Data Management

    At Albato, we fully comply with the General Data Protection Regulation (GDPR), prioritizing privacy and protection for EU customers. Our infrastructure meets stringent European standards, employing strong encryption, access controls, and incident response to safeguard customer data at every step.

    All of Albato’s data sub-processors, such as Intercom, HubSpot, and AWS, are also confirmed GDPR-compliant.

    If you would like our full GDPR report, reach out to info@albato.com

    gdpr
    soc 2

    SOC 2 & Ongoing Certifications

    Albato is SOC 2 Type 2 Certified

    Our SOC 2 Type 2 certification validates our adherence to industry regulations and our commitment to protecting customer data. This comprehensive framework addresses:

    This security framework covers the following areas:
    • Security: Protection from unauthorized access and breaches.
    • Availability: Reliable, always-accessible systems.
    • Processing Integrity: Accurate, dependable data processing.
    • Confidentiality: Secure handling of sensitive information.
    • Privacy: Compliance with global data privacy regulations.

    SOC 2 Type 2 is an ongoing effort, and we undergo annual, rigorous audits to maintain this standard. We are also in the process of obtaining ISO 27001 certification to further enhance our security practices

    If you want the full SOC 2 report, reach out to info@albato.com

    Your responsibility

    Your responsibility

    Your Role in Ensuring Data Security
  • No Data Analysis: We do not mine or use your data.
  • Disable Logging Anytime: You’re in control—turn off data recording when you choose.
  • Secure Connections Only: All data flows through protected connections.

    • FAQ

    Is my customers' data stored by Albato?
    collapsed

    We only store what’s necessary to keep the integrations running smoothly: encrypted API credentials, automation logs (including error details), automation settings, and aggregated statistics like the number of transactions and raw request logs. Rest assured, we never analyze or use the data that passes through our connectors.

    How are my customers' credentials managed and stored?
    collapsed

    The authentication details are kept encrypted at all times. We use a separate, highly secure server to store the keys that decrypt these credentials. Only a handful of authorized Albato employees can access this information for essential tasks like troubleshooting system issues. Under the GDPR, your clients can opt out of data storage at any time—but please note that doing so may disable some helpful features like automatic error retries.

    How is my customer data encrypted?
    collapsed

    We use best-in-class encryption measures: 256-bit AES encryption for data at rest and TLS 1.2 or 1.3 with AES 256 for data in transit. By following strict security and privacy standards, we ensure that only the actions needed to run your customers' automations are performed.

    Can my customers delete their data whenever they want?
    collapsed

    Yes, under the GDPR and our privacy policy, your customers' can request data deletion at any time. Just contact your software provider’s support team, and they’ll handle the request. Please note that deleting some data might affect features like error auto-retries.

    What happens if there is a service outage or downtime?
    collapsed

    Our infrastructure ensures high availability. In rare outages, we act fast to restore service. The software provider will get real-time updates and confirm immediately once the automations are back to normal.

    Is Albato compliant with industry standards and regulations?
    collapsed

    Yes. We comply with the GDPR and maintain SOC 2 Type 2 certification. We also conduct regular third-party penetration testing and annual audits to ensure ongoing adherence to global security standards. For further details or compliance reports, contact us at info@albato.com.

    At Albato, your trust is paramount.

    We continuously strive to maintain and strengthen our security, reliability, and compliance so you can focus on what matters most—automating your workflows and growing your business.