MONGODB ATLAS

MongoDB Trust Center

MongoDB is dedicated to securing and protecting your data – with strong technical controls, regulatory compliance, organizational standards and processes.

Try Atlas

An illustration of a padlock floating over 3 data documents.

Committed to protect customer data

MongoDB is dedicated to protecting customer data, including continually improving security processes and controls and upholding transparency with regard to data usage. We deliver the highest levels of standards conformance and regulatory compliance as part of our mission to address the most demanding security and privacy requirements of our customers.

Security

MongoDB Atlas offers built-in security controls and enables enterprise-grade features to integrate with your existing security protocols and compliance standards. Your data is protected with preconfigured security features for authentication, authorization, encryption, network security, data resiliency, and more.

MongoDB Security Hub

Atlas security whitepaper

Learn about security controls, platform measures, information security programs, and more.

Atlas shared responsibility model

Learn about shared responsibility between a customer and MongoDB as a cloud provider.

Technical and Organizational Security Measures (TOSMs)

Learn more about security best practices, features, processes, and controls applicable to MongoDB Atlas.

Atlas security features

Atlas comes preconfigured with secure default settings. Learn more about all the Atlas security features.

Database security features

MongoDB database security features include authentication, RBAC, encryption, auditing, data masking and more.

Ops Manager and Kubernetes Operator

MongoDB Ops Manager security features include authentication, role-based access control, activity feed, and more.

An illustration of arms and hands typing on desktop computer keyboard with hovering application window and padlock.

Compliance

MongoDB developer data platform undergoes independent verification of platform security, privacy, and compliance controls to help you meet regulatory and policy objectives, including unique compliance needs of highly-regulated industries.

To meet the security and privacy needs of the U.S. government, MongoDB has a dedicated, FedRAMP® Moderate Authorized environment. Atlas for Government (U.S.) is a dedicated environment for the U.S. government and ISVs looking to build US public sector offerings.

Atlas Compliance

A fully managed integrated suite of data services centered around a cloud database designed to accelerate and simplify how you build with data.

Global standard for information security management systems.

Global standard for cloud specific security controls.

Global standard to protect sensitive data on the cloud (PII).

Security and organizational controls for cloud providers.

Best practices to ensure a secure cloud computing environment.

Requirements for processing and accessing credit card data.

U.S privacy regulation safeguarding health information.

Set of controls designed to address regulations on health.

Document explaining the accessibility of products per Section 508.

Privacy protections for EU and EEA data.

Atlas for Government (US) Compliance

Atlas for Government (US) is a dedicated, FedRAMP® Moderate Authorized environment of Atlas, built to meet the U.S. government and agencies' demanding security and privacy needs.

Learn more

A standardized approach to security and risk assessment of cloud provider products and services across U.S government and agencies.

Controls to protect the full lifecycle of Criminal Justice Information (CJI), whether at rest or in transit.

Database Compliance

MongoDB database that provides the services and tools necessary to build distributed applications fast, at the performance and scale users demand.

Standard to certify libraries that encrypt and decrypt data securely.

Document explaining the accessibility of products per Section 508.

An illustration of a padlock surrounded by applications, data and charts.

Privacy

MongoDB is committed to protecting the privacy of your data.

Your data stored in our platform and cloud products can be accessed by authorized MongoDB personnel only to ensure reliability of service. Access is restricted and monitored using both privileged access controls and management processes.

View our Privacy Policy

Privileged access controls

Role-based access controls (RBAC) ensure only a group of privileged MongoDB reliability engineers can access systems via a gated process that uses a bastion host, requires MFA to log into MongoDB systems and establish a Secure Shell connection (SSH).

Management processes

MongoDB maintains a strong policy to establish effective administrative, technical, and physical safeguards for customer data, and to identify, detect, protect against, respond to, and recover from security incidents.

An illustration of databases with data passing between them continuously on a cloud.

Reliability

With an industry-leading availability guarantee for all clusters used for production deployments across AWS, Azure, and Google Cloud Platform, Atlas clusters are highly available and backed by an uptime SLA of 99.995%. MongoDB server software is continuously updated, for access to the latest features and enhancements.

Availability status of MongoDB Platform

Check all MongoDB cloud services including Atlas, Cloud Manager, App Services, Data Federation, and Atlas for Government.

MongoDB Cloud Services SLAs

Atlas clusters are highly available and backed by an industry-leading uptime SLA of 99.995% across all cloud providers.

Data resilience and high availability

Learn more about the database replica sets, failover of primary replica sets, and best practices around multi-zone/region cloud deployments.

Ready to get started?

Build your applications on MongoDB, a trusted developer data platform with strong security controls, regulatory compliance, and technical measures.