Procore Analytics 2.0 - Security Measures
Background
At Procore, we’re serious about protecting our customers’ data, and have implemented numerous security measures to achieve that goal. In the spirit of transparency, some of those measures are described below.
Data Protection
Procore Analytics 2.0 implements a layered data security approach. The following security measures are in place:
-
Transport Layer Security. All data in transit to the delta share server is secured and encrypted via TLS 1.2+.
-
Data Encryption. The data is encrypted using Amazon’s Key Management Service [KMS], and stored in Amazon’s object storage [S3]. AWS KMS performs real-time encryption and decryption of the data
-
Short lived credentials. All connection attempts are done via open secured sharing protocol with short lived credentials options using pre-signed URLs.
-
Authentication. All credentials are secured through tokens and shares, utilizing a secured shared server that can access only the specific data dedicated to each company.
-
Auditing. All actions are recorded and audit logs are stored for tracking database activity.
-
Threat Observability. Procore security teams utilize an observability dashboard to detect and respond to unusual data activity.
Best-in-Class Service
Procore has a 99.9% service-level objective for the availability of its services. Individuals can email security@procore.com with any security-specific concerns or questions, or to identify specific vulnerabilities.