Trust & Security
Enterprise security and governance documentation.
Enterprise security and governance documentation.
## How to use this section
Start with the page that matches your goal, then follow the related links at the end of the page. Each page is written as an operational guide: what the page is for, who should use it, what you can do, how to verify success, and what to check when something does not work.
## Pages in this section
### Overview
Understand Kadryn security posture at a high level.
Open: Overview
Data Handling
Understand what data Kadryn stores, processes and avoids storing.
Open: Data Handling
Secrets
Understand how to handle Kadryn, provider and webhook secrets.
Open: Secrets
Encryption
Understand encryption expectations for data in transit and at rest.
Open: Encryption
RBAC
Understand roles, permissions and access boundaries.
Open: RBAC
Audit Logs
Understand audit evidence and activity tracking.
Open: Audit Logs
Retention
Understand retention by plan and workspace settings.
Open: Retention
SSO / SAML
Understand enterprise SSO and SAML configuration.
Open: SSO / SAML
SCIM
Understand SCIM provisioning and lifecycle management.
Open: SCIM
Privacy
Understand privacy mode and sensitive payload handling.
Open: Privacy
Subprocessors
Understand external services involved in Kadryn delivery.
Open: Subprocessors
Incident Response
Understand how to prepare and respond to security incidents.
Open: Incident Response
Compliance
Understand compliance-oriented workflows and evidence.
Open: Compliance