Security by design
Fully secure networks
Deploys into your secure networks
Develocity can be deployed to secure networks on-premise or in your cloud environment, co-located with your CI infrastructure for low-latency remote cache access. You can also deploy it into air-gapped networks.
Cloud-native security
Adheres to cloud-native security best practices
Designed around Kubernetes security best practices for secret management and service accounts, Develocity fits perfectly into a cloud-native security architecture.
Secure development
Built with hardened development processes
All development for Develocity follows a rigorous security methodology, including continuous vulnerability scanning, dependency analysis, artifact integrity checks, and regular third-party penetration testing.
SOC2 Compliant
SOC2 Type 2 Compliant
We work with independent auditors to maintain a SOC2 Type 2 report, which objectively certifies our controls to ensure the continuous Security and Confidentiality of our customers' data. Review our reports and other documentation in our Trust Portal.
Key Capabilities
Privacy is at the heart of Gradle Technologies
Privacy by design for new product features and internal processes.
Compliance with Data Protection regulations in all countries we operate in, including GDPR and CCPA.
Minimal data sharing required. Customers self-host Develocity and only share contact information with us for Customer Support purposes.
Data Processing Agreement Transparency Report, and other important information are available at gradle.com/data-protection.
Organizational security
- Get copies of our SOC2 Type 1 and 2 reports and other relevant Security Policies from our Trust Portal at trust.gradle.com