Security Features
Comprehensive security controls for enterprise deployments.
Self-Hosted Deployment
Deploy GoRules on your own infrastructure. Your data never leaves your environment. Full control over where and how your rules are stored and executed.
Encryption at Rest & Transit
All data is encrypted using industry-standard AES-256 encryption at rest. TLS 1.3 ensures secure communication between all components.
SSO Integration
Integrate with your existing identity provider via OIDC. Support for Okta, Azure AD, and other OIDC-compliant providers. No separate passwords to manage.
Role-Based Access Control
Fine-grained permissions control who can view, edit, approve, and publish rules. Create custom roles that match your organization structure.
Audit Logging
Complete audit trail of every action. Track who changed what, when, and why. Export logs to your SIEM for compliance and security monitoring.
Approval Workflows
Require reviews before rules go live. Multi-stage approval flows ensure changes are validated by the right people before deployment.
Security by Design
Security is built into every layer of GoRules.
Sandboxed Execution
Rules execute in isolated environments with no access to filesystem or network.
No Data Collection
We never see your business data. Everything stays in your infrastructure.
Regular Audits
Third-party security assessments and penetration testing.
Compliance
Verified security controls you can trust.
SOC 2 Type II Compliant
GoRules has obtained SOC 2 Type II report, demonstrating our commitment to highest security and latest standards. View our trust portal for detailed compliance information.
View Trust Portal →Self-hosted deployments: When you deploy GoRules on your own infrastructure, you bring your own security controls. Your compliance posture is determined by your cloud environment and internal policies.