AppSheet offers industry-leading information security safeguards and processes for its platform.
AppSheet is hosted on Microsoft Azure’s cloud infrastructure which supports every major security and privacy standard including ISO 27001, HIPAA, FedRamp, SOC1 and SOC2, as well as country-specific standards like IRAP.
AppSheet completes annual SOC 2 audits. The SOC 2 Type 1 report highlights AppSheet control environment for security, availability, and confidentiality. To access the SOC 2 report, submit an inquiry here.
The data that your applications collect and use reside in a third-party storage provider (e.g., Google Drive, Dropbox, etc.) and are subject to the data provider's trust and security measures. Our service does not persist this data. However, in order to improve performance, we may temporarily cache data, images, and other files. To learn more, review our Information Security whitepaper.
AppSheet is committed to privacy as both a core feature of our platform and an ongoing principle for user interactions and data.
AppSheet is an active participant in the Privacy Shield Framework. Out commitment covers HR and non-HR data in the EU, Switzerland, and United States.
AppSheet is compliant with GDPR’s privacy and user data requirements. Visit our GDPR Compliance page to learn more.
AppSheet will never access user application data without the express consent of our users. It’s your data, and we’d like to keep it that way.
The AppSheet platform supports robust governance features that allow administrators to effectively manage the creation, usage, and deployment of applications handling sensitive data.
No-Code, No Problems
Because AppSheet is a no-code platform, IT managers do not need to review any custom code which might contain security vulnerabilities. Every application built is, by default, as secure as the AppSheet platform and the connected data sources.
App creators can setup domain-specific authentication by leveraging popular authentication solutions including Google Drive, Azure Active Directory, Dropbox, Box, Smartsheet, AWS Cognito, OpenID, and Okta.
With an upgraded business plan, administrators on the AppSheet platform can easily monitor app usage and set governance policies for individual teams or the whole company.
AppSheet is committed to adhering to all relevant laws and regulations that govern our platform-as-a-service business both domestically and internationally to support our customers around the world.
AppSheet’s platform is SOC 2 Type 1 compliant and is audited on an annual basis, GDPR compliant, and HIPAA-approved for business plan-based service licensing agreements. To receive access to the SOC 2 report, submit an inquiry here.
AppSheet is committed to being transparent about service downtime and any issues that may be affecting our platform’s performance. Any relevant announcements will always be posted on our Community page.
How to report an issue
If you experience any security-related issues, please reach our technical team at email@example.com.