Neo4j Aura™ is designed to meet your most stringent security requirements.
We take security seriously. Our experienced team of security practitioners work across disciplines, such as security engineering, security assurance and risk and compliance, to ensure you experience world-class security features and your data is protected against all threats – today and in future.
All your data, including your backup snapshots, are encrypted at rest. All network traffic, even within the service infrastructure, is encrypted using Transport Layer Security (TLS).
Your Neo4j Aura database clusters, as well as service components, are deployed in a separate Virtual Private Cloud (VPC) with dedicated cloud infrastructure. Access can be restricted to an IP access list.
Neo4j Aura uniquely supports multiple users and granular security with a role-based access control framework and fine-grained node and property level access. This allows data managers to fine-tune access to privileged information stored in Neo4j. It also allows organizations to deliver logical security etiquettes for all users.
As an ISO 27001 certified organization, Neo4j is committed to supporting compliance with data protection laws and regulations, such as the EU General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA), throughout our services.