DB Schema’s are quite sensitive information to any corporation. And for companies that must maintain compliance (SOC 2, HIPAA, NIST, ISO), we need to perform our due diligence before considering the use of a SaaS provider such as dbdiagram.io.
Can your team please create a page (at the very least) that details some the key/critical security best practices that are followed by your company to ensure information is safe and secure from hackers? Does dbdiagram.io follow any of the security frameworks mentioned above, even if not officially certified by an auditor?
Thank you for sharing this!
Holistics has been certified as SOC2 compliant. You can read our announcement.
We (the dbdiagram team) are actively finishing some requirements to follow the SOC2. We’ll add a document page shortly for security and compliance. We’ll keep you posted when it’s ready.
Thanks.
Hi - Any update to the SOC2 certification for dbdiagram? Trying to pitch this tool to my company and security is a main concern.
Thanks!
Since we do not currently have an official SOC2 certification that is specific to dbdiagram, you can complete out this form to obtain access to Holistics SOC2 report, which includes a mention of dbdiagram.
Update Mar 2024: We added a Data Security page to detail our SOC2 compliance for dbdiagram/dbdocs.
1 Like