How to report an issue:
If you believe you have discovered a security-related issue, please contact us at help@layer.team.
Layer is committed to providing a secure place for your building’s data. Our external certifications provide independent assurance of Layer Platform, Inc.’s dedication to protecting our customers by regularly assessing and validating the protections and effective security practices Layer has in place.
Compliance
Layer has undergone a Service Organization Controls audit (SOC 2 Type 2). Please contact help@layer.team to request Layer’s most recent report.
Encryption
Layer uses industry-tested and accepted standards for encryption.
→ All data stored at rest is encrypted using AES-256 bit encryption.
→ All communication to and from Layer is encrypted using TLS 1.3 to encrypt network traffic between users’ devices and Layer.
→ All files are saved with AES256 encryption in our private cloud, and employee access is restricted.
Product Security
Within Layer, permissions can be managed at the company level and at the project level.
Company permissions are managed by a designated owner of the organization in Layer. These permissions determine who can be added to projects within your organization.
Project permissions are managed by a designated owner of any Layer project. These permissions determine who can access project-level data with controls over read and write access. Project owners can also invite users outside of their organization as collaborators on a single project with similar read and write access roles.
Visit Layer’s product documentation for more information on Company and Project permissions.
Subprocessors
Layer works with several companies & their tools that help us build & maintain our product. These tools have been carefully chosen based on their support and security practices.