Rollbar is fully compliant with stringent industry standards
Rollbar has received its SOC 2 Type I compliance certification.
Rollbar is fully HIPAA and HITECH Act compliant, and will sign Business Associate Agreements with you.
Learn about HIPAA BAA options →Rollbar is certified ISO27001 compliant through independent third-party audit and attestation.
See our ISO27001 certificate →Rollbar fully complies with EU GDPR and will sign a Data Processing Agreement with you.
Learn about our GDPR commitment →As an agile team that handles sensitive data, we not only need an error monitoring tool that fits into our continuous deployment and development process, but we must make sure that we protect our client’s sensitive data while meeting HIPAA compliance.Warren Habib CTO
Independent testing and internal audits are conducted regularly
We conduct regular security training that meets HIPAA standards
We have a responsible disclosure policy for vulnerabilities found
Procedures are in place in the event of service disruptions and disasters
All data is encrypted at application level with AES-256 GCM encryption
SAML-based SSO, two-factor authentication, and policy-based access
Comprehensive and auditable logs of user activities
PII, PHI, PCI data filtering and removal, and custom data retention period
Yes, you have the option to have Rollbar sign a BAA with you to ensure that we - as your business partner with access to PHI - is HIPAA-compliant. We offer standard BAA as an add-on to existing paid plans, or custom BAA as part of the Enterprise plan. Please contact Sales to learn more.
Join 100,000+ developers, improving millions of software experiences