Skip to main content

Security

Hotpot is built with best-in-class security, leveraging industry standards and our own experience to keep your work and data safe and secure at each layer. We deploy state-of-the-art encryption, safe and reliable infrastructure partners, and have independently verified security controls.

Single Sign-On (SSO)

Users can log into the Hotpot app through:

  • Google SSO
  • Okta SSO
  • Email/password combination

Encryption

Hotpot is built with deep integration against AWS resources. All network communications are encrypted and transit through virtual private networks with specific security groups restricted access to minimal permission sets. Data at rest is encrypted, and sensitive data, such as customer API keys and integration configuration, is decrypted by the application only when needed for access.

Trust Center

Hotpot maintains a Trust Center where you can find answers to frequently asked questions, explore our extensive security, privacy, and reliability practices, and access and download our compliance documentation (like our SOC2 report).

Certifications

Hotpot is compliant with SOC2 Type I and is actively engaged with a third-party auditor for our Type II certification. We anticipate this to be completed by February 15th, 2025.

To request other security and compliance documents for Hotpot, please visit our Trust Center or contact us at help@hotpot.works.

Data regions

All Hotpot data is currently stored entirely in the United States.