Try-iQ

Product

Capella AI Services: Build scalable and secure AI applications faster and easier

Learn more

Our security approach

Couchbase security is a team effort. It begins with top-down policies from management and extends to the development of secure products by our engineers, management of governance and compliance by our information security team, and shared responsibilities across all our business units.

Built-in security protects your modern enterprise

cb-icon-reliable

Verify

Role-based access controls ensure only authorized users or applications have access to data.

Security_2 (1)

Enforce

Enforcement of least privilege access is applied to all credentials and secrets, ensuring strict access controls to sensitive data and actions.

cb-icon-authenticate

Monitor

To prevent potential breaches, Capella implements a managed cloud intrusion detection system that involves 24×7 monitoring.

cb-icon-API

Modernize

Capella is built using modern DBaaS principles and secure development practices.

Compliance

The Couchbase information security team has established a robust security program based on Couchbase’s identified risks, industry standards, and best practices (e.g., CIS Critical Security Controls, ISO 27002, NIST SP 800-53, and SSAE 18 SOC 2 Trust Principles).

AICPA SOC logo

SOC 2

Couchbase Capella successfully completed a SOC 2 Type II audit and received an independent auditor’s report examining Capella’s security, availability, and confidentiality controls. You can request a copy of the report from our team.

A-lign-ISO

ISO/IEC 27001:2022

Couchbase Capella successfully completed ISO 27001, 27017, and 27018 independent audits, with our robust security, privacy, and cloud data protection controls. ISO 27001 is a global standard for information security and reducing data breach risks. Request the certifications here.

standard-security-council logo

PCI DSS

The Couchbase security framework encompasses data encryption and many other key elements to secure and protect data in transit and at rest within the payment card ecosystem. Couchbase Capella has achieved PCI DSS 4.0 attestation of compliance.

HIPAA logo

HIPAA

An independent review allows Couchbase Capella to be used with HIPAA-compliant applications. Please contact us to execute the required Business Associate Agreement (BAA) for this purpose.

gdpr logo

GDPR

Couchbase works closely with European products and services customers to help them enable their GDPR compliance and meet their data privacy and regulatory requirements.

CA-star logo

CSA STAR

Through an external security audit, Couchbase Capella has successfully completed a CSA STAR Level 2 certification for attestation of compliance. The CSA STAR Level 2 certification underscores our dedication to exceeding security benchmarks.

HDS-certification

HDS Certification

Capella has achieved Hébergement de Données de Santé (HDS), a French data protection standard for hosting and processing health data. Verified by Schellman, confirming Capella meets all HDS requirements. Contact us to request the certification.

Critical components

Privacy

Couchbase is committed to being transparent about how we collect, use, and protect data received and stored by our products and services. See the Couchbase Privacy Policy for more information.

Trust center privacy

Reliability

Couchbase’s architecture interweaves many technology elements to ensure reliability, disaster tolerance, and industry-leading high availability at scale on a global basis.

Trust center Reliability

Shared responsibility

Although much of the security framework is in place and automated, customers are responsible for some initial configuration and ongoing security administration. See our Shared Responsibility Model to learn more.

Trust center Shared Responsibility

What customers are saying

Nexon-Image
“Harnessing the power of the cloud through Capella allowed us to deploy applications in multiple regions in parallel quickly and seamlessly.”
Jae Beom Cho, Director of Game Infrastructure, Nexon
Read Customer Story See all stories
Molo
“This is the second solution MOLO17 delivers in the emergency rescue field, and both use Couchbase technologies.”
Daniele Angeli, Founder & CEO, MOLO17
Read Customer Story See all stories
Quantic-capella
“Capella’s impressive price-performance and edge capabilities give our developer team a more agile experience and allow our clients’ apps to remain synced.”
Vigyan Kaushik, Co-founder and CEO, Quantic
Read Customer Story See all stories
Lotum
“With Capella, millions of players are able to use the devices of their choice without losing profile data and have a consistent experience without disruptions.”
Lars Schmeller, Team Lead, Lotum
Read Customer Story See all stories

Learn security best practices for Capella

Protect your data from attacks with auditing, encryption, and authentication.

Go to Docs

Security resources

Resources_Doc-2
Whitepaper

Best practices for data protection and security with Couchbase

Get the paper
See All Resources
cb-icon-building-1

Start building

Check out our developer portal to explore NoSQL, browse resources, and get started with tutorials.

Develop now
small-accent-capella (2)

Use Capella free

Get hands-on with Couchbase in just a few clicks. Capella DBaaS is the easiest and fastest way to get started.

Use free
why-couchbase-red

Get in touch

Want to learn more about Couchbase offerings? Let us help

Contact us