Trust Center
The API7 Trust Center is a centralized resource for all security and compliance-related information about API7 Gateway. We are committed to transparency and providing our customers with the information they need to evaluate our security posture and meet their own regulatory requirements.
Certifications and reports
API7.ai maintains a formal security program and can provide current certification status, audit reports, and compliance documentation on request. To obtain copies of our latest reports or to request an attestation for your procurement process, contact your API7 account manager or sales@api7.ai.
Security best practice guides
We provide detailed guides to help you configure API7 Gateway for maximum security:
- Security Hardening — recommended settings for production environments.
- Role-Based Access Control — design least-privilege roles and permission boundaries.
- Secure Credentials — use external secret managers to protect sensitive configuration data.
- Verify Image Signatures — verify that container images were built and signed by API7.ai.
Security contact
If you have questions about our security practices or need to report a security concern, contact our security team directly at security@api7.ai. Your API7 support representative can also connect you with the right team for specific security advisories or compliance documentation.
Data privacy and governance
For information about our commitment to protecting customer data, adherence to global privacy regulations (such as GDPR), or to request a Data Processing Agreement (DPA), contact your API7 account manager or sales@api7.ai.
Next Steps
- Review our Vulnerability Scanning practices.
- Analyze Audit Logs for your own environment.