#ISO 27001 Compliance

is convex ISO 27001 compliant?

Hi @hidden egret. I'm kapa.ai, your friendly support bot. I will try to answer your question by searching through the knowledge base. :wave:

The knowledge sources provided do not state that Convex is ISO 27001 certified or compliant.

What they do say is:

• Convex’s official guarantees and legal terms are described in their Terms of Service and related legal docs, and they invite you to contact them for specific compliance requirements. [Status & guarantees; Contact]
• They provide a Data Processing Agreement (DPA) on their website and can handle signed agreements (e.g. BAA, DPA) for Convex Pro customers via support tickets. [DPA thread]
• All user data is encrypted at rest, replicated across availability zones, and regularly backed up. [Status & guarantees; Backups]

However, there is no explicit mention in these sources that Convex is ISO 27001 certified or that they claim ISO 27001 compliance.

For an authoritative answer (or to obtain documentation for your auditors), you should contact Convex directly via [email protected] or their security contact at [email protected]. [Contact; Status & guarantees]

Note: you can ask me a follow up question by @ mentioning me again :speech_balloon: