Request Demo
Security at Alchemy

Maintaining the highest levels of security, data privacy, and compliance is essential to keeping our commitment to our customers.

Data security is paramount for Alchemy and our customers. Alchemy protects customer data with world-class physical, network, application, and data-level security. In addition, Alchemy invests in the most advanced and modern infrastructure available to provide an innovative, scalable, global, predictable, and secure environment.


Alchemy maintains a comprehensive security program based on ISO 27001 to ensure the confidentiality, integrity, and availability of customer data. Alchemy is committed to ensuring our services are available for operation and use at times set forth in service-level agreements, protected against unauthorized physical and logical access and that our system processing is complete, accurate, timely, and authorized.

Service Organization Controls (SOC)

Alchemy regularly passes rigorous third-party compliance audits of our robust security, confidentiality, and availability controls. Alchemy also has available a Service Organization Controls 2 (SOC 2) Type II report under the Security and Confidentiality Principles. These reports confirm that Alchemy delivers fully secure and reliable, high quality operating standards in its data center operations, including provisioning, management and monitoring of the hardware, network, and firewall. All of these reports are for limited distribution and shared under confidentiality agreement. Please direct all requests through your Alchemy Account Executive or Customer Success Manager.

For more information on our SCO2 Type II posture, click here.

International Organization for Standardization (ISO) 27001

Alchemy has achieved ISO (International Organization for Standardization) 27001 certification for our Information Security Management Systems (ISMS) and aligned with ISO 27018 for privacy controls, covering various Alchemy products and supporting infrastructure as described in Alchemy’s certificate. ISO 27001 is a globally recognized security standard that provides a guideline of the policies and controls that an organization has in place to secure their data. The standard sets out internationally agreed upon requirements and best practices for the systematic approach to the development, deployment and management of a risk/threat based information security management system. ISO 27018 is an international code of practice that focuses on privacy controls for cloud providers.

For more information on our ISO 27001 posture, click here.


Alchemy leverages the most advanced cloud infrastructure to provide an innovative, scalable, global, predictable, and secure environment.

Alchemy uses Amazon Web Services (AWS) as its primary cloud infrastructure provider to meet Alchemy customers’ growing needs. AWS is Privacy Shield certified. See further AWS Certifications. To ensure conformance with local regulations, application data resides and is backed-up in key geographic regions — U.S. (East Coast) and Europe (Germany and Ireland).