Compliance

Last updated: May 22, 2026

As an AppSec company, Fluid Attacks looks to achieve a thorough compliance with requirements and controls that protect information. Find a comprehensive description of how Fluid Attacks meets this objective in this section.

The following is a graphic summary of the security measures Fluid Attacks takes to perform Continuous Hacking in its clients' systems.

Security measures of Fluid Attacks in its Continuous Hacking

Learn more about some items depicted in the above figure:

SSL Labs A+ grade
TLS encryption (Strict mode, TLS 1.3 floor, HSTS preload, post-quantum hybrid kex)
Authenticated Origin Pulls (mTLS) to origins
AES 256 encryption for object storage (see also database encryption)
OpenSSF gold badge
Trust Center — customer-facing audit evidence (SOC2, PCI-DSS, ISO) hosted on Vanta.

Dive deep into Fluid Attacks' security measures:

Transparency
Confidentiality
Authentication
Authorization
Privacy
Non-repudiation
Availability
Resilience
Integrity