Is the data encrypted when in transit?
Lacework agent encrypts data when in transit from customer location to our SAAS service.
Does Lacework Polygraph collect any PII or sensitive data?
Lacework collects only metadata. It does not collect any information inside the packets or PII data.
How is the data stored at Lacework site?
The data at the Lacework Polygraph SAAS is encrypted at rest.
Is customer data shared with other customers?
Each customer’s data is stored in a separate database and there is no sharing of data. Lacework has a multi-tenant architecture where processing is done by common application.
How are usernames and password kept safe?
Lacework does not store any customer username or password in our system. The only way to login to the Lacework Polygraph system is by using Google OAuth or getting a magic link via email.