Your data matters
From infrastructure to processes, we follow industry best practices and undergo independent audits to validate our approach. We’re deeply invested in security processes and protocols and are always striving to provide you with total confidence your data is safe and secure at Arlo.
For more detailed information, explore our latest security, privacy, and compliance credentials below.
SOC 2 Compliance
We’ve always taken security seriously. Now we’re backing it up with third-party assurance.
Arlo has successfully completed its SOC 2 Type 1 audit, conducted by external auditors, which confirms our internal controls meet the trust service criteria for security.
SOC 2 is a globally recognized framework for managing customer data securely. It verifies that we follow strict controls around data handling, access, availability, and monitoring.
If you’re currently evaluating Arlo and working through procurement or security review, you’ll be pleased to know our full Type 2 SOC 2 certification is already underway and due for completion in September. That means by the time you’re ready to implement, the certification will be in place.
We're not finished yet
This is the first milestone in a broader, long-term investment in platform security. Our SOC 2 Type 2 audit is already underway and scheduled for completion in September 2025. These audits are conducted by independent, trusted third-party security specialists who assess our systems and processes in detail.
What this means for you:
- Our security practices are audited and documented
- The controls we have in place today are already live and being followed
- The full operational certification is in progress and soon to be complete
Get all the details via our Trust Center
Arlo’s security program is built in response to the expectations of our global customer base, including large enterprise, government, and regulated training providers. We’re continuing to invest in tools, processes, training, and independent assessments to ensure Arlo remains secure, resilient, and transparent.
Cloud-native and regionally hosted
Arlo runs on Amazon Web Services (AWS), the world’s most trusted cloud provider. Your data is stored in a region of your choice; United States, Canada, Ireland, or Australia — giving you control over access speed, privacy jurisdiction, and regulatory alignment.
- Multi-region availability and redundancy
- Load-balanced production environments across separate data centers
- Automated encrypted backups with separate remote storage
- Scripted deployment for fast disaster recovery
Secure access your team will love
Arlo supports enterprise-grade authentication through Single Sign-On (SSO) and SAML protocols. This gives you tighter control over who can access your systems while making it easier for your team and customers to log in securely.
Fewer passwords, stronger access rules and complete confidence in access for you and your team.
Ready to streamline training?
Start your 14-day free trial now. No credit card required. Unlimited users.
Proactive monitoring and continuous uptime
Our production systems are continuously monitored using best-in-class SIEM tooling and geographic uptime checks. We detect, log, and respond to unusual activity in real-time — so if something goes wrong, we know about it fast.
Our uptime model is built for resilience, with multi-zone deployment and failover capabilities across all core environments. We have documented, tested incident response procedures in place, and we notify affected customers promptly in the event of a security incident.
Built for privacy-first organizations
We meet key global data protection standards, and we’re transparent about how we manage customer information.
SOC 2
- Type 1 audit completed
- Type 2 audit underway (due September 2025)
GDPR
- Fully compliant with EU data protection laws
- Data processing language included in our Master Subscription Agreement
- Built-in tools for consent collection and data access requests
PCI DSS
- All payment processing is handled by PCI DSS-compliant providers
- No card data is stored or transmitted by Arlo systems directly
Arlo Security & Data FAQ's
Can I download your SOC 2 report?
Yes. The SOC 2 Type 1 report is available in our Trust Center. The Type 2 report will be published there once complete.
Does Arlo support SSO?
Yes. We support SSO and SAML-based authentication. Read more about SSO & SAML over on our Help Center.
Where is my data hosted?
Within AWS on US Soil by default, new organisations can choose to have their data stored in regions outside the US, such as the EU or AP Regions.
Is my data encrypted at rest and in transit?
Yes, organisations use HTTPS w/TLS 1.2 for in-transit and AES-256 at rest.
Is my data backed up?
Yes, for redundancy and disaster recovery purposes.
What privacy assurance is in place?
Arlo is both GDPR and CCPA aligned. View the privacy policy at https://www.arlo.co/legal/privacy-policy
Can I talk with a member of your security team?
If you have special requirements, or have a security or data question, please reach out to us at any time via https://www.arlo.co/contact
Explore the Trust Center
Our Trust Center gives you access to the latest security, privacy, and compliance details, all in one place. Download certifications, review audit history, and verify the practices that keep your data safe in Arlo.
