Security & Compliance

At Viam, we understand that protecting your data is paramount. We believe security is so critical we did not launch our public beta before implementing rigorous security protocols into the platform. Viam is SOC2 Type I and HIPAA compliant per independent auditors, and has been since the moment the beta launched. Viam is committed to continually improving our security and privacy features as the platform evolves, and sharing advancements with customers.

With Viam, you have full governance of your smart machines: you control user access to Viam. Every smart machine has end-to-end encrypted communications with Viam’s platform, other smart machines, and the client applications they interact with.

Viam makes it easier than ever to do big things with smart machines, always with the confidence that security comes first.

Viam's Security Architecture

A diagram of Viam's Security architectureA diagram of Viam's Security architectureA diagram of Viam's Security architecture
1

Users connect to Viam using Fusionauth

Organization admins control which locations and smart machines users can access.
2

Smart machines connect with Viam

Every smart machine uses a distinct smart machine secret to connect with app.viam.com.
3

Smart Machines Connect with each other

3A – Within a local network

Each smart machine shares a location certificate to establish TLS between smart machines within the same location.

3B – Across the internet via WebRTC

Each smart machine shares a location secret to connect with smart machines at the same location.
4

smart machines connect with client application

Client applications use the same location secret to connect with smart machines locally, or over the internet via WebRTC.
SOC2 Compliant Badge

SOC2 Type I

System and Organization Controls (SOC) Reports are the result of independent third-party audits that examine how Viam achieves key compliance controls and objectives. The Viam SOC 2 Security Type I report will help you and your auditors understand the Viam controls established to support data security, availability, confidentiality, privacy, and more.
Hipaa Compliance Badge

HIPAA

For organizations in healthcare and related fields subject to the requirements of the Health Insurance Portability and Accountability Act of 1996 (HIPAA), Viam is HIPAA-ready and enables covered entities and their business associates to use a secure cloud database environment to process, maintain, and store protected health information (PHI).
REPORTING A SECURITY INCIDENT
Please report any suspected security incident to: security@viam.com