At PingCAP we value security and trust more than anything because we know our customers entrust us with their most important asset - the data itself. We take this responsibility seriously and are always dedicated to protecting the Security, Availability, and Confidentiality of our customers’ data. We have incorporated security into all aspects of our offering (TiDB Cloud) and operations.
Key Security Features
TiDB Cloud is designed with strict security measures in all aspects that are aligned with the market, so that you can focus on your data, not protecting it.
Data access controls
Data access controls
  • VPC peering connection
  • IP allowlist
Data Encryption
Data Encryption
  • In-transit encryption (TLS/SSL)
  • Encryption at rest (AES256) for TiKV, TiFlash, and backup data.
  • Inter-node identity authentication (mTLS)
  • Client identity authentication
Workload Isolation
Workload Isolation
Dedicated VPC for your TiDB clusters to guarantee data confidentiality and integrity.
We are committed to providing enterprise-grade security and privacy. This is not simply demonstrated in technology. We undergo third-party auditing to ensure our services and operations adhere to the compliance requirements of your organization. TiDB Cloud operates in accordance with the following compliance requirements:
SOC 2 Type 1 Report
SOC 2 Type II Report
→ Learn More
The SOC 2 Type II audit is performed by Schellman & Company, LLC, based on relevant guidelines developed by the American Institute of Certified Public Accountants (AICPA) for the appropriateness of controls related to the security, availability, and confidentiality of the TiDB Cloud service offering. PingCAP completed the SOC 2 Type I examination in July, 2020, see more in the announcement.
ISO/IEC 27001:2013
→ Learn More
ISO/IEC 27001:2013 is a globally recognized standard that sets out the policies and requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS). PingCAP has achieved ISO/IEC 27001:2013 for TiDB Cloud, certified by British Standards Institution (BSI), an ANAB-accredited certification body.
The General Data Protection Regulation (GDPR) is a regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states. GDPR applies to all companies processing and holding the personal data of data subjects located in the European Union, regardless of the company’s location. PingCAP has achieved the GDPR compliance for TiDB Cloud, certified by ePrivacy GmbH.
More compliance audits are in progress...

Are you ready to start your free trial?

Choose from the free and discounted public preview options