At Neon, we prioritize data security and privacy, and we have achieved several key compliances that validate our efforts. We have completed audits for SOC 2 Type 1 and Type 2, SOC 3, ISO 27001, and ISO 27701, and we adhere to GDPR and CCPA regulations.

SOC 2

We have successfully attained SOC 2 Type 1 and Type 2 compliance. These compliances, validated by independent auditors, confirm that our systems adhere to the American Institute of Certified Public Accountants (AICPA) trust service criteria for security, availability, processing integrity, confidentiality, and privacy.

SOC 3

The SOC 3 report is a public-facing version of the SOC 2 report, providing assurance to external parties about our system's ability to meet the trust service criteria without disclosing sensitive details. Neon Business plan users can request this audit report through our Trust Center.

ISO 27001

ISO 27001 is an internationally recognized standard for information security management systems (ISMS). Our compliance with this standard demonstrates that we follow a systematic and risk-based approach to managing sensitive information, ensuring its security.

ISO 27701

ISO 27701 extends ISO 27001 to include data privacy requirements, helping organizations establish, implement, and maintain a privacy information management system (PIMS) in accordance with GDPR and other privacy laws.

GDPR

The General Data Protection Regulation (GDPR) is the European Union's regulation designed to protect individuals' privacy and personal data. Neon adheres to GDPR requirements, ensuring the rights and data privacy of our users across the EU.

CCPA

The California Consumer Privacy Act (CCPA) grants California residents new rights regarding their personal data. Neon is committed to complying with CCPA, ensuring transparency and control for users over their personal information.

HIPAA

Neon offers HIPAA compliance as part of our Business and Enterprise plans, enabling applications that handle Protected Health Information (PHI) to meet compliance requirements.

A copy of Neon's HIPAA compliance report can be requested through our Trust Center.

To request a draft Business Associate Agreement (BAA), please contact the Neon Sales team. Once a BAA is signed, the Neon Sales team can assist you with enabling HIPAA for your Neon account.

HIPAA-enabled accounts can request access to HIPAA audit logs by opening a support request.

For additional information about HIPAA compliance and Neon, please refer to the Neon HIPAA Compliance Guide.

Questions?

To learn more about how we protect your data and uphold the highest standards of security and privacy, please visit our Trust Center, where you can also request and download audit reports.