Our team works hard behind the scenes to keep your data safe, secure, and private. This is our responsibility to you, our customers, and we take it seriously.
Our site is served using TLS 1.1 and greater, and we follow application security best practices. Asana hosts all data in secure SSAE 16 audited data centers via Amazon in the US. We also work with third-party security services and network scanning tools to reduce vulnerabilities and security threats to your data. And if you find a vulnerability in Asana, our bounty program rewards the responsible disclosure of these threats.
In Asana, you control how your work is shared with others via your settings. And when you enter sensitive information, we encrypt the transmission of that data using industry-standard encryption. Asana is compliant with both the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework.
We know trust is earned, not just given. And we believe it starts with being transparent about our system’s status and performance. The Asana Trust page shares our app and API availability over the past 12 hours, 7 days, 30 days, and year.