Security and compliance you can build on.
LangWatch is built from the ground up with security, privacy, and compliance prioritized from day one. Here is how we protect your data, and the deployment options that keep it where it belongs.
ISO 27001GDPRSOC 2 (via AWS)EU data residency
Enterprise security foundations.
Encryption
- AES-256 at rest
- TLS 1.2+ in transit
- AWS KMS key management
Access control
- Role-based access control
- Multi-factor authentication
- SSO via Auth0, AWS IAM policies
Monitoring & response
- Snyk anomaly detection
- AWS CloudTrail + CloudWatch
- 24/7 automated alerts, structured IR
Backup & recovery
- Daily encrypted backups
- Geo-redundant storage
- RPO under 1h, RTO under 4h
Secure development
- Security code audits
- Dependabot + Snyk scanning
- Peer review, prod/staging isolation
Data privacy
- Automatic PII detection + removal
- GDPR right-to-be-forgotten
- DPA available for enterprise
Your data, your boundary.
LangWatch Cloud
Managed by LangWatch on AWS, EU data centers, multi-region redundancy. All access logged and permissioned.
Self-hosted
Run the full stack on your own infrastructure, with deployment support from our team.
Hybrid
Keep LLM data on your infrastructure while LangWatch Cloud handles monitoring. Strict residency.
Need our latest penetration test or a DPA? Email security@langwatch.ai. See also our privacy policy and terms.
Bring LangWatch to your security review.
We will walk your team through controls, deployment, and the documentation you need to move quickly.