Skip to main content

Security posture: practical, scoped, and improving.

PingBase is an uptime monitoring platform built for developers. We take security seriously and keep scope intentionally narrow to reduce risk. We are targeting SOC 2 Type II certification in Q3 2026.

Scope choices that reduce risk

  • Minimal data footprint: we only store URLs, check results, and incident metadata
  • Edge-first: Cloudflare Workers for compute, no traditional servers to patch
  • Immutable audit logging: all security events recorded with tamper-proof triggers

What's already in place

  • PBKDF2-SHA-256 password hashing (100k iterations)
  • TOTP multi-factor authentication with backup codes
  • TLS 1.3 everywhere, HSTS preload, CSP headers
  • Rate limiting on all auth and API endpoints

Vendor review

We can provide a security overview and answer standard questionnaires. For security-focused organizations, reach out and we'll walk you through our controls.

Contact us for a security overview

Privacy basics

  • Customers own their data
  • We don't sell customer data
  • Self-service account deletion available
Privacy Policy → Terms of Service → Acceptable Use →