PRODUCT

Capella AI Services: Build scalable and secure AI applications faster and easier

Learn More

Our security approach

Couchbase security is a team effort. It begins with top-down policies from management and extends to the development of secure products by our engineers, management of governance and compliance by our information security team, and shared responsibilities across all our business units.

Built-in security protects your modern enterprise

Verify

Role-based access controls ensure only authorized users or applications have access to data.

Enforce

Enforcement of least privilege access is applied to all credentials and secrets, ensuring strict access controls to sensitive data and actions.

Monitor

To prevent potential breaches, Capella implements a managed cloud intrusion detection system that involves 24x7 monitoring.

Modernize

Capella is built using modern DBaaS principles and secure development practices.

Compliance

The Couchbase information security team has established a robust security program based on Couchbase’s identified risks, industry standards, and best practices (e.g., CIS Critical Security Controls, ISO 27002, NIST SP 800-53, and SSAE 18 SOC 2 Trust Principles).

SOC 2

Couchbase Capella successfully completed a SOC 2 Type II audit and received an independent auditor’s report examining Capella's security, availability, and confidentiality controls. You can request a copy of the report from our team.

ISO/IEC 27001:2022

Couchbase Capella successfully completed ISO 27001, 27017, and 27018 independent audits, with our robust security, privacy, and cloud data protection controls. ISO 27001 is a global standard for information security and reducing data breach risks. Request the certifications here.

PCI DSS

The Couchbase security framework encompasses data encryption and many other key elements to secure and protect data in transit and at rest within the payment card ecosystem. Couchbase Capella has achieved PCI DSS 4.0 attestation of compliance.

HIPAA

An independent review allows Couchbase Capella to be used with HIPAA-compliant applications. Please contact us to execute the required Business Associate Agreement (BAA) for this purpose.

GDPR

Couchbase works closely with European products and services customers to help them enable their GDPR compliance and meet their data privacy and regulatory requirements.

CSA STAR

Through an external security audit, Couchbase Capella has successfully completed a CSA STAR Level 2 certification for attestation of compliance. The CSA STAR Level 2 certification underscores our dedication to exceeding security benchmarks.

Critical components

Privacy

Couchbase is committed to being transparent about how we collect, use, and protect data received and stored by our products and services. See the Couchbase Privacy Policy for more information.

Trust center privacy

Reliability

Couchbase’s architecture interweaves many technology elements to ensure reliability, disaster tolerance, and industry-leading high availability at scale on a global basis.

Trust center Reliability

Shared responsibility

Although much of the security framework is in place and automated, customers are responsible for some initial configuration and ongoing security administration. See our Shared Responsibility Model to learn more.

Trust center Shared Responsibility

What customers are saying

Nexon-Image
“Harnessing the power of the cloud through Capella allowed us to deploy applications in multiple regions in parallel quickly and seamlessly.”
Jae Beom Cho, Director of Game Infrastructure, Nexon
20 minutes to launch new regions
Read Customer Story See all stories
Molo
“This is the second solution MOLO17 delivers in the emergency rescue field, and both use Couchbase technologies.”
Daniele Angeli, Founder & CEO, MOLO17
100% of boats successfully rescued
200 app downloads during event
Read Customer Story See all stories
Quantic-capella
“Capella’s impressive price-performance and edge capabilities give our developer team a more agile experience and allow our clients’ apps to remain synced.”
Vigyan Kaushik, Co-founder and CEO, Quantic
50% reduction in query time
Read Customer Story See all stories
Lotum
“With Capella, millions of players are able to use the devices of their choice without losing profile data and have a consistent experience without disruptions.”
Lars Schmeller, Team Lead, Lotum
800 million downloads worldwide
10+ million monthly active users
Read Customer Story See all stories
Learn security best practices for Capella

Protect your data from attacks with auditing, encryption, and authentication.

Go To Docs

Security resources

WHITEPAPER
Couchbase Capella security and data protection
Get the paper
WHITEPAPER
Best practices for data protection and security with Couchbase
Get the paper
WEBPAGE
Critical alerts and advisories for Couchbase
Check the page
See All Resources
Start building

Check out our developer portal to explore NoSQL, browse resources, and get started with tutorials.

Develop now
Use Capella free

Get hands-on with Couchbase in just a few clicks. Capella DBaaS is the easiest and fastest way to get started.

Use free
Get in touch

Want to learn more about Couchbase offerings? Let us help.

Contact us