Data Warehouse Security
Data Warehouse Security by Design
Snowflake follows best-in-class, standards-based practices to ensure your data and data warehouse security. Security is built into the foundations of Snowflake, not as an add-on or afterthought, removing the complexity and burden of enabling security from our customers.
Industrial-strength Data Warehouse Security
Snowflake provides the protection required of an enterprise-class data warehouse.
- Fine-grained, role-based access control for data and actions.
- Always-on encryption of data stored in Snowflake.
- Automatic data protection against accidental or intentional destruction.
These are all data security capabilities that other recent entries, such as Hadoop, don’t have.
Deployed Securely in the Cloud
Snowflake runs in Amazon Web Services’ highly secure data centers. The Snowflake service runs inside a Virtual Private Cloud, with individual hosts protected by firewalls configured with the most stringent rules. All communication with the Snowflake service is protected at the network level using industrial-strength, secure protocols.
And that’s just the beginning. We continue to adapt as new data security threats emerge, designing and deploying new counter-measures quickly and efficiently, without the obstacle of legacy functionality and architecture.
Certified and Validated
Snowflake leverages established best practices for security controls as part of our security program. Snowflake works with AICPA-certified, third-party auditors to maintain security compliance and attestations including SOC 2, Type II.
Snowflake is also PCI DSS certified and HIPAA compliant, with the processes and controls in place required by the U.S. Health Insurance Portability and Accountability Act (HIPAA).
Learn more about our approach to security in our security white paper.
Building Secure Data Insights as a Service
PDX required a data warehouse to help deliver its analytics-as-a-service to more than 10,000 pharmacies, while ensuring strict compliance with HIPAA requirements. Read why they chose Snowflake to make that happen.