Secure auth, every step of the way

Protect each step of the user's journey from login to logout
SOC 2 and ISO 27001 certified
GDPR and CCPA compliant
Annual 3rd-party penetration tests
Data encryption with HTTPS/TLS 1.3
Multi-region Data residency
Scalekit offers dedicated clusters in Frankfurt (EU) and Los Angeles (NA), ensuring low latency, strict data boundaries, and region-specific encryption.

Frequently asked questions

Expand all
Collapse all
What certifications does Scalekit have?

Scalekit holds ISO 27001 and SOC2 certifications and conducts regular VAPT assessments to maintain high-security standards. Scalekit is also GDPR and CCPA compliant.

What data do you store?

Scalekit stores only the data sent from identity providers.  For more information, view our Privacy Policy

Where is customer data stored?

For North America, customer data is stored in U.S. data centers (Los Angeles). For Europe, all customer data remains within our EU data center in Frankfurt.

Is your data encrypted?

Yes, Scalekit uses HTTPS / TLS 1.3 to protect data in transit and at rest, safeguarding your information from unauthorized access.

Pll / User data
Secure Cache with TTL
Client Secrets / API Keys
Hashed using Bcrypt
End customer data
Encrypted using Keys via GCP CKM
Tokens / Sessions
Stateless and verified using Signature
Transport
HTTPS/SSL for all APIs and SSL/TLS for all internal connections.
Database / Disk
AES-256 Encryption at Rest
Is Scalekit GDPR and CCPA compliant?

Scalekit complies with GDPR and CCPA regulations. If you need to request data deletion, please contact security@scalekit.com.

What happens to my data after account termination?

Data is retained for 30 days  post-termination and is then permanently deleted unless restoration is requested during that period.

Can you provide a pen test report?

The latest penetration test report can be provided to customers after signing an NDA. Contact us at security@scalekit.com for more details.

Where can I find the list of data subprocessors?

Please see our [list of subprocessors] for the most up-to-date information

How can I report security issues?

Please report security issues by emailing us at security@scalekit.com. We address them as quickly as possible.

Our commitment to
privacy and security

Data Protection Agreement
Learn about our commitments to data security and privacy.
Read more
Privacy Policy
Understand how we collect, use, and protect your personal information.
Read more
Terms of Service
Understand the rules and guidelines governing your use of our services.
Read more
Subprocessors
Understand how we work with third-party service providers to process your data.
Read more
The Auth Stack
for AI applications
hi@scalekit.com
16192 Coastal Hwy Lewes,
DE 19958
Join our community 
Compliance
Authenticate
MCP AuthAPI AuthSSOSocial LoginsSCIMB2B User Management
Agents
Agent Actions New
Compare
Scalekit vs StytchScalekit vs Descope
Auth Platform
Auth WorkflowsUI CustomizationIDP Integrations
Auth guides
MCP AuthSingle Sign-onPasswordlessSCIMOAuth
Resources
DocsAPI ReferenceBlogRelease NotesSDKs
Company
LegalTrust CenterCustomers
Follow us on
All systems operational
Copyright © 2025.
ScaleKit Inc. All rights reserved
By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation and collect statistics on usage.
Accept 👌
Winning enterprise customers shouldn't be hard.
Book a demo