Trust at Asana

Trust at Asana

More than 100,000 of the world's most innovative enterprises trust Asana to keep their data safe.

Get the white paperContact sales

Loved by millions of users in the largest organizations around the world

More than 85% of Fortune 100 companies use Asana*

Amazon - logo grid
P&G logo
Accenture logo
Japan Airlines logo
Kohl logo
Xero logo
Under Armour logo
Paypal Logo
Benefits

How Asana earns trust

Asana covers these essential needs, so teams can succeed with peace of mind.

Asana security

Security

Data protection is key to support teams’ success, so we incorporate security into our product and operations.

Learn more
Asana reliability

Reliability

We invest in our infrastructure to support deployments of 100 or 100,000 and beyond.

Asana privacy

Privacy

We're committed to protecting your privacy through our product, infrastructure, and data governance.

Asana compliance

Compliance

We adhere to global, regional, and industry regulations to help you meet compliance standards.

Security

Protect your work

Asana takes a security-by-design approach to protecting your data. We build our platform using best practices for highly available, scalable, and secure cloud applications.

Asana security infrastructure

Security infrastructure

Asana’s infrastructure is designed with layers of protection to help ensure your data is secure while transmitted, stored, or processed. Protections include encryption, least privilege access, secure software development, and a public bug bounty program.

Asana operational security

Operational security

Our information security team continuously implements new security controls and monitors Asana for malicious activity across physical data centers, networks, and IT devices.

Asana product security

Product security

Asana provides a robust set of in-product data protection and admin controls for greater visibility and control over your data. Enterprise admins can securely deploy Asana to their organizations with two-factor authentication, SSO, SAML 2.0, and data controls for the mobile app.

Now Available: Data Loss Prevention, Archiving, eDiscovery integrations

Increase data protection and help meet your organization's most critical compliance needs. Get alerts when sensitive data is added to Asana, pull data into your archiving solution, and extract data for litigation and investigations.

Learn more
Asana Enterprise Key Management
Reliability

Monitor your system

We offer full transparency into system status and performance.

Asana priority support

Uptime and availability

Asana offers 24/7 priority support and a 99.9% uptime commitment to Enterprise customers, and provides transparency into real-time and historical platform status.

Asana daily backups

Business continuity

Asana’s infrastructure investments provide daily backups, regional backups, and recovery procedures for restoring services in the event of unavoidable failures.

Privacy

Protect what matters

We have a comprehensive privacy compliance program that aligns our practices with regulations such as the General Data Protection Regulation and California Consumer Privacy Act.

Read more on privacy
Asana privacy controls

Privacy controls

Asana provides in-product admin controls, both user and object-level permissions, and the ability to define which third-party applications are accessible to your team.

Asana data control

Data governance

Asana allows customers to export and delete data at the organization level and automate full-domain exports through our API.

Asana data residency

Data residency

Asana offers global data residency options with data centers in Europe, Australia and Japan so customers have more control over where their data is stored.

Asana Enterprise Key Management Icon

Enterprise Key Management

Gain more control over your data and help meet your organization’s most critical compliance needs by using your own encryption key on your Asana data.

COMPLIANCE

Certifications and attestations

Asana adheres to global privacy laws and security standards with measures in place to help you meet your compliance obligations.

SOC 2

SOC 2 (Type 2)

Security, availability, and confidentiality trust services criteria

Read documentation
SOC 3

SOC 3

Overview of Service Organization Controls

GDPR

GDPR

Data protection and data subject rights for EU residents

CCPA

US State Privacy Laws

Compliant with relevant US state privacy laws in California, Colorado, Virginia, and more

ISO/IEC 27001:2013

ISO/IEC 27001:2013

Global standard for information security management systems

Read documentation
ISO/IEC 27001:2013

ISO/IEC 27017:2015

Code of practice for information security controls for cloud services

ISO/IEC 27001:2013

ISO/IEC 27018:2019

Code of practice for protecting personally identifiable information (PII)

ISO/IEC 27001:2013

ISO/IEC 27701:2019

Privacy information management standard supporting compliance with global privacy laws

CSA Star Level 1 icon

CSA STAR Level 1

Cloud security controls compliance self-assessment

Read documentation
HIPAA Logo

HIPAA

Protection of patient health information in the United States

GLBA

GLBA

Privacy Rule and Safeguards Rule for financial institutions

FERPA

FERPA

Privacy rights for educational information and records

ISO/IEC 27001:2013

APPI and other global privacy laws

Protection of the personal information for residents of Japan and other relevant global privacy laws

Learn more about Trust

Article

Security > Stability > Performance > Functionality

More on Asana security

Take a deeper dive into Asana’s security practices and philosophy by downloading our trust and security whitepaper today.

Get the white paperContact sales