GDPR Compliance: Knack is compliant with the EU’s General Data Protection Regulation. HIPAA-Compliance: Knack has also undergone HIPAA audits and offers a HIPAA compliant version of the product that includes signing a BAA. Credit cards: Knack is PCI DSS compliant and does not directly process or store any sensitive credit card details belonging to you or your end-users. Your sensitive card details are never transmitted through or stored on Knack’s infrastructure. Passwords: Your password is encrypted, salted and never stored in our database in a readable/unencrypted format. You are responsible for choosing a strong password and keeping it secret. Two-factor authentication is available to all Knack customers and we strongly recommended enabling it on your account for an additional layer of protection. SOC2: Knack maintains SOC2 Type 2 compliance annually and is happy to provide our latest audit report. Our team can guide you through the necessary steps to request a copy.

Encryption in Transit: Data sessions are always protected with TLS 1.2 or higher protocols and 2,048-bit keys. Encryption at Rest: Data is also encrypted when not being used. All of our databases utilize encrypted storage with AES256 encryption algorithms to further protect your data. Incident Response: Knack maintains an incident response plan that is a well-defined and documented process to ensure we do the right things right if there is an incident. We also generate post-mortems on any incident we experience, to maintain documentation as well as learn where we need to improve. Focused security: Knack considers security during all phases of our software development lifecycle from product ideation to deployment and release. We run automated and manual code analysis and use industry best practices to ensure the highest standards of quality for our services.

99.9% Uptime: Knack’s availability consistently exceeds 99.9%. All customer data remains in the account’s region but is spread across that region for redundancy and is backed up daily. Those backups are encrypted and kept for a rolling 28 day period. Backups: We take daily snapshots of the databases and retain them for a rolling 28 day period. We also utilize a technology that creates immutable backups which can not be tampered with in any way. 24×7 Monitoring: Our cloud engineering team monitors application, software, and infrastructure behavior through industry-established services that are highly reliable and compliant. High Availability: Knack’s infrastructure is built in a way that provides high availability in the event of an outage. Meaning that your data will always be available even if a data center suffers a failure.

Secure Your Data With Our Secure No-Code Online Database App

Get Infrastructure that Protects you Proactively

We are committed to infrastructure that works to protect you and your business 24/7.

Protect your data as it moves between our servers and your web browser with the strongest encryption available.
Have peace of mind that multiple copies of every change are stored in multiple backup locations
Inherit all the best practices of AWS policies, architecture, and operational processes with AWS infrastructure.

Start Free Trial

Safeguard your Build Through Extensive Permission Controls

Protect the integrity of your app by implementing a wide range of comprehensive permission controls.

Password-protect your apps with encrypted password technology so that only authenticated users can access them.
Assign roles for your users and define exactly which permissions each role has.
Design your application so that each logged-in user can only access the records that are connected to them.

Start Free Trial

Add More Security Measures for Advanced Protection

Add additional features like user logins, IP blocking, password, and login restrictions for further security.

Optionally restrict access to your app to specific IP addresses or IP blocks.
Integrate your Active Directory or LDAP users for Single Sign On to limit access to your established users.

More About Knack’s Security Features

Data Privacy

GDPR Compliance: Knack is compliant with the EU’s General Data Protection Regulation.
HIPAA-Compliance: Knack has also undergone HIPAA audits and offers a HIPAA compliant version of the product that includes signing a BAA.
Credit cards: Knack is PCI DSS compliant and does not directly process or store any sensitive credit card details belonging to you or your end-users. Your sensitive card details are never transmitted through or stored on Knack’s infrastructure.
Passwords: Your password is encrypted, salted and never stored in our database in a readable/unencrypted format. You are responsible for choosing a strong password and keeping it secret. Two-factor authentication is available to all Knack customers and we strongly recommended enabling it on your account for an additional layer of protection.
SOC2: Knack maintains SOC2 Type 2 compliance annually and is happy to provide our latest audit report. Our team can guide you through the necessary steps to request a copy.

Data Access

At Knack, all new hires, regardless of role, undergo background checks and are trained on up-to-date security policies and industry standards. Additionally, existing team members are required to maintain that status and undergo training updates annually.

Your data is your property and will never be sold to third parties. We will only access your Knack account with your permission, in the case of suspicious account activity or if we suspect our terms of service or acceptable use policies are being violated. All employee access to your data is logged and persisted.

Application Security

Encryption in Transit: Data sessions are always protected with TLS 1.2 or higher protocols and 2,048-bit keys.
Encryption at Rest: Data is also encrypted when not being used. All of our databases utilize encrypted storage with AES256 encryption algorithms to further protect your data.
Incident Response: Knack maintains an incident response plan that is a well-defined and documented process to ensure we do the right things right if there is an incident. We also generate post-mortems on any incident we experience, to maintain documentation as well as learn where we need to improve.
Focused security: Knack considers security during all phases of our software development lifecycle from product ideation to deployment and release. We run automated and manual code analysis and use industry best practices to ensure the highest standards of quality for our services.

Availability

99.9% Uptime: Knack’s availability consistently exceeds 99.9%. All customer data remains in the account’s region but is spread across that region for redundancy and is backed up daily. Those backups are encrypted and kept for a rolling 28 day period.
Backups: We take daily snapshots of the databases and retain them for a rolling 28 day period. We also utilize a technology that creates immutable backups which can not be tampered with in any way.
24×7 Monitoring: Our cloud engineering team monitors application, software, and infrastructure behavior through industry-established services that are highly reliable and compliant.
High Availability: Knack’s infrastructure is built in a way that provides high availability in the event of an outage. Meaning that your data will always be available even if a data center suffers a failure.

Data Centers and Network

Our cloud provider (AWS) maintains ISO 27001, SOC2, along with many other certifications. We maintain several regions around the globe and are built to help performance and compliance in different locations.

Network attacks are prevented through monitoring and controlled network-level firewalling.

Explore Solutions

Read Customer Stories

Try Interactive Demo

Template Marketplace