Security Guide
Dolphyn offers a flexible workspace to clean & explore, model and build various data workflows.

Data & Network Security

  • No customer data or PII is ever stored on Dolphyn's servers
  • All traffic from or to Dolphyn uses TLS 1.2, 1.3 encryption
  • All data on the Dolphyn platform is encrypted at rest and in transit
  • Tokens, passwords, certificates, API keys and other secrets will be securely stored in secrets manager in Vault
  • Code runs in a fully controlled and isolated environment, meaning each Python run will happen in a protected environment with process and memory isolation
  • Dolphyn servers are hosted in GCP across US regions on SOC 2 and ISO 27001 certified infrastructure

Dolphyn Deployment Options

Coming soon: The on-premise agent will be available in Q2-2022
  1. 1.
    Cloud only: 100% cloud version and secure the connection via TLS+IP Allowlist, VPN Tunneling, or VPC Peering
  2. 2.
    On-Premise Agent: Customer runs an On-Premise Agent which serves all queries and keeps all PII customer data within their VPC. Authentication, Permissions, Application definitions and all other non-sensitive operations are served from the Dolphyn cloud.

Running python code in Dolphyn

When you write code in Dolphyn, it gets executed in an isolated VM separate from the host, this means that any python execution will happen in a protected environment with process and memory isolation. Customers have the ability to control modules / packages that are available at runtime.
  • Cloud: Code execution happens in the Dolphyn cloud
  • On-Premise Agent: Code execution happens inside the agent in the customer's network