Knowledge BasePricing

Security & Trust

Cloud Reviewer is built for teams that handle sensitive code. Here is what we do to protect yours.

Data Residency

All customer data is stored and processed within the European Union. Our infrastructure is hosted in Italian and EU datacenters. We do not transfer personal data outside the EU/EEA.

Cloud Reviewer is operated by Security Reviewer Srl, an Italian legal entity, under GDPR jurisdiction.

Certifications

  • SOC 2 Type II: Audit in progress. Target completion available on request.
  • ISO 27001: Pursuing certification. Status available on request.

We apply information security controls aligned with SOC 2 and ISO 27001 principles regardless of certification status.

Vulnerability Disclosure

We operate a responsible disclosure policy. If you discover a security vulnerability, please report it to our security team. We commit to acknowledging reports within two business days and providing a resolution timeline.

Contact: security contact form

Security Questionnaires

Enterprise buyers conducting vendor security reviews can request our security documentation package. We provide completed VSA questionnaires, penetration test summaries, and data processing agreements.

Contact our partnerships team via the contact form.