The Twilio Cloud Communications Platform offers a highly scalable, highly secure API and application development platform designed to ensure the privacy and security of your data. Ensuring the confidentiality, integrity and availability of your systems and data is core to our engineering design principles and business practices.
All data sent to and from Twilio is encrypted to industry standards.
All customer data stored on our servers is encrypted at AES-256.
Twilio uses world-class, highly secure data centers that are ISO 27001 certified, Level 1 PCI certified, and undergo annual SOC1 audits. These state-of-the-art data centers utilize advanced electronic surveillance and multi-factor access control systems. Data centers are staffed 24x7 by trained security guards, and access is authorized strictly on a least privileged basis.
Your privacy is important to us. Twilio only collects the data we need to run our business. For more information on what data is collected and how we use it, please visit our Privacy page: https://www.twilio.com/legal/privacy.
You can build PCI-complaint applications. Twilio is PCI DSS compliant. We use a validated Level 1 PCI DSS Compliant Service Provider for credit card processing.
Twilio supports a variety of use cases employed by companies engaged in HIPAA covered activities. We provide an open platform to send and receive messages and calls, the contents and compliance of which are solely your company's responsibility. It is important that you consult your own legal counsel to determine if you are subject to HIPAA regulations, and what you need to do to secure your application and data.
Twilio offers many resources on our site to assist you in building efficient and secure apps, including QuickStart Guides, HowTo’s, and Helper Libraries. We also recommend checking out our featured blog post: "Best Practices For Securing Your Twilio App" for more information.
The data centers and environmental systems we use are designed to minimize the impact of disruptions to operations. We utilize real time replication between multiple geographic regions and Availability Zones. In the event of a primary system failure, a backup location will continue the service.
Companies large and small rely on Twilio for their critical communication needs. Please visit our webpage to get more details.