Enterprise-grade protection for your eDNA data
Security & Compliance
Last updated: February 3, 2026
Your data security is our top priority. Oceara implements industry-leading encryption, compliance frameworks, and infrastructure practices to protect your environmental DNA data and research insights.
Core Security Pillars
Access Control
Role-based access, private storage buckets, and strict authentication help ensure only approved users can reach data.
Encryption
Data is protected in transit via TLS and stored using encryption at rest provided by our infrastructure partners.
Monitoring
We monitor systems for abnormal activity and maintain audit logs for sensitive operations.
Data Handling
- FASTQ uploads and pipeline outputs are stored in private buckets with scoped access.
- Pipeline processing runs in isolated compute environments with controlled permissions.
- Only necessary metadata is shared with AI systems to generate interpretations.
Operational Practices
- Least-privilege access for internal teams and service accounts.
- Separation of development and production environments.
- Regular dependency updates and vulnerability review.
- Backups and recovery procedures for critical datasets.
Incident Response
We maintain an incident response process that includes triage, containment, customer notification, and remediation steps when needed.
Your Responsibilities
Keep your login credentials secure, invite only trusted collaborators, and remove access promptly when team members leave.
Security Contact
Report potential vulnerabilities to security@oceara.io