Compliance

Last updated: Jun 5, 2026

As an AppSec company, Fluid Attacks works to uphold the requirements and controls that protect client information. Find a comprehensive description of how Fluid Attacks meets this objective in this section.

The diagram below summarizes the security measures Fluid Attacks applies when performing Continuous Hacking in clients' systems.

Security measures of Fluid Attacks in its Continuous Hacking

Learn more about some items depicted in the above figure:

SSL Labs A+ grade
TLS encryption (Strict mode, TLS 1.3 floor, HSTS preload, post-quantum hybrid kex)
Authenticated Origin Pulls (mTLS) to origins
AES 256 encryption for object storage and platform database
OpenSSF gold badge
Trust Center — customer-facing audit evidence (SOC2, PCI-DSS, ISO) hosted on Vanta.

Dive deep into Fluid Attacks' security measures:

Transparency
Confidentiality
Authentication
Authorization
Privacy
Non-repudiation
Availability
Resilience
Integrity