Data protection
Encryption in transit and at rest. Your twins and policies are isolated per tenant.
Your policies, twins, and evidence are protected with enterprise controls, tamper-evident records, and deployment options that keep sensitive IP in your hands.
Certisto protects your policies, twins, and evidence with controls robotics and manufacturing teams expect.
Encryption in transit and at rest. Your twins and policies are isolated per tenant.
SSO, SCIM provisioning, and role-based access down to the project level.
Tamper-evident logs of every trial, artifact, and signature in the Evidence Vault.
Run on-prem or on your DGX so sensitive IP never leaves your infrastructure.
Dedicated compute options and network isolation for regulated workloads.
Backups, disaster recovery, and monitored uptime across the platform.
We build to recognized security and privacy standards and provide the documentation your security team needs for review.
Certifications marked in progress reflect our roadmap; ask for current status during security review.
SOC 2
ISO 27001
GDPR
CCPA
| Control | Team | Enterprise |
|---|---|---|
| Encryption at rest & in transit | Yes | Yes |
| SSO (SAML / OIDC) | Add-on | Yes |
| SCIM provisioning | — | Yes |
| Role-based access control | Yes | Yes |
| Audit logs & Evidence Vault | Yes | Yes |
| On-prem / DGX deployment | — | Yes |
| Custom data retention | — | Yes |
| Dedicated security review | — | Yes |
Evidence Vault
The Evidence Vault stores an immutable record of how each certificate was produced — the twin version, seeds, scenarios, and signatures — so any result can be independently verified.
Least privilege
Employee access is scoped, reviewed, and logged.
Secure SDLC
Code review, dependency scanning, and secrets management.
Continuous monitoring
Runtime monitoring and alerting across the environment.
Penetration testing
Regular third-party testing and vulnerability management.
Detect
Continuous monitoring and alerting surface anomalies quickly.
Contain
On-call security responds and isolates affected systems.
Notify
Affected customers are informed per contractual timelines.
Remediate
Root-cause analysis and preventive fixes, shared transparently.
Request our security documentation, subgraph of subprocessors, and current compliance status.
| Provider | Purpose | Region |
|---|---|---|
| NVIDIA GPU Cloud | Simulation & training compute | US / EU |
| AWS | Application hosting & storage | US / EU |
| Cloudflare | Edge network & DDoS protection | Global |
| Auth provider | SSO & identity | US / EU |
A current, complete subprocessor list is available on request under NDA.
We'll walk through our controls, compliance status, and deployment options for your requirements.