Security

Security posture for production integrations

PinBridge is built as a multi-tenant publishing platform with security controls focused on credential safety, tenant isolation, and operational reliability.

Transport and storage encryption

API traffic is protected with HTTPS/TLS, and sensitive credentials are encrypted at rest with scoped access boundaries.

Workspace isolation model

Authentication and authorization are enforced at the workspace boundary to keep account, board, asset, pin, schedule, and billing data separated.

Credential lifecycle controls

API keys and OAuth-linked credentials are managed with rotation, revocation, and operational monitoring practices designed for production workflows.

Operational auditability

Request and workflow status context supports troubleshooting, incident response, and internal compliance processes.

Operational controls and expectations

PinBridge enforces controlled publish throughput with queueing, pacing, retries, and status visibility so teams can operate Pinterest automations with predictable behavior.

Compliance status

SOC 2 certification is in progress. Security controls and operational practices are aligned to common enterprise review domains, and we can support due-diligence requests through our security channel.

Incident response and legal requests

Security contact: security@pinbridge.io. Subprocessors and DPA requests: legal@pinbridge.io.

Security documentation

Use the following pages during implementation reviews, procurement questionnaires, and internal security audits.

API Key Security Data Privacy SOC 2 Readiness Audit Logs