Secure AI with Domino
Built for the world’s most regulated industries, Domino keeps your AI data, models, and IP secure and compliant.Trusted by leading enterprises
Protect every layer of your AI ecosystem
From infrastructure to model governance, Domino provides unified visibility, automated compliance, and enterprise-grade security built for the world’s most demanding environments.
Unified protection
Secure your entire AI ecosystem on one unified platform that eliminates vulnerability gaps between disparate tools, centralizing visibility and monitoring.
Security by design
Security is baked into the Domino platform. Tooling and testing is integrated into the software development lifecycle, including third-party penetration testing.
Continuous compliance
Domino takes the manual work out of compliance record keeping and audits by continuously monitoring all of your models and data.
Security architecture for enterprise AI
In-depth protection across data, identity, and operations — built to meet the unique security, governance, and compliance demands of enterprise AI.
- Network security
- Data protection
- Authentication
- Operational maintenance
- Recovery
Application and network security
Single-tenant isolation
Domino is installed in your cloud or on-premises infrastructure, or for our managed accounts in in your own AWS subaccount and VPC, ensuring complete isolation from other deployments.
Secure development lifecycle
Rigorous testing including code reviews, SAST, DAST, third-party penetration testing, and comprehensive automated test suites.
Vulnerability management
Regular third-party penetration tests, continuous vulnerability scanning, and routine upgrades to maintain resilience.
Intrusion detection
Around-the-clock monitoring with SIEM integration for real-time detection and response to anomalies.
Data protection and privacy
End-to-end encryption
Built-in encryption of data at rest and in transit using industry-standard TLS 1.2 and AES-256. AWS KMS-secured encryption for all stored data.
Data sovereignty
Choose specific regions or countries for deployments to ensure adherence to local compliance requirements and data locality regulations.
Data retention
Versioned datasets with secure deletion capabilities. Ephemeral data handling for external data sources with automatic cleanup.
Privacy compliance
Designed to align with GDPR, HIPAA compliant for healthcare customers utilizing PHI data in the platform.
Authentication, authorization, and identity access management control
SSO with SAML 2.0
Seamless integration with leading identity providers. Users access the platform using corporate SSO permissions with SAML 2.0 authentication.
MFA enforcement
Add an extra verification layer through your IDP to mitigate risks associated with compromised credentials.
Granular RBAC
Fine-grained, role-based access control for every user and administrator across all Domino objects including projects, data, code sessions, models, and dashboards.
Comprehensive auditability
Complete logs and events for all user and administrative interactions from application layer to cloud-native infrastructure.
Security and operational maintenance
Patch management
Regular application upgrades and monthly system patching. Routine scanning for critical issues with out-of-band updates as necessary.
Platform monitoring
24/7 monitoring of infrastructure, network devices, intrusion detection systems, and user actions with SIEM integration.
Security audits
Routine third-party security audits are conducted to validate the security posture, ensure transparency, and adherence to regulatory standards.
Compliance alignment
The platform is continually monitored and audited against global regulatory changes, including SOC 2 Type 2, ISO 27001:2022, and ISO 9001:2015. Compliance support extends to GDPR and HIPAA.
Backup and recovery
Regular backups
Deployments are automatically backed up every 24 hours, which protects against both data loss and cloud infrastructure outages.
Continuity planning
Regular disaster recovery drills simulate scenarios to refine response mechanisms. The platform supports an RTO of 8 hours and an RPO of 24 hours.
Availability and SLA
A commitment to optimal uptime is backed by health checks, redundant infrastructure, and proactive monitoring. The system is committed to 99.0% uptime for monthly UI availability.
Transparent communication
In the unlikely event of an incident, clear and timely communication with customers is prioritized. A structured protocol informs stakeholders from identification to resolution.
Compliance made continuous
Domino embeds compliance into every stage of the AI lifecycle, ensuring you’re always audit-ready.
Continuous monitoring
Domino tracks your models and data in real time, automates compliance checks and keeps you continuously audit-ready.
Regulatory alignment
Certified to global standards such as ISO 27001:2022, ISO 9001:2015, SOC2, GDPR, and HIPAA, Domino provides a secure foundation you can trust for regulated AI.
Data sovereignty
Control where your data lives and how it’s processed. Domino Nexus supports regional access restrictions and local data processing to meet sovereignty requirements.
Audit reports
Access detailed security and compliance reports anytime. Independent third-party audits regularly confirm Domino’s enterprise-grade security posture.
Additional compliance support
Beyond core certifications, Domino supports customer compliance with frameworks such as 21 CFR Part-11, EudraLex, WHO Annex 5, and GxP. Our team helps regulated organizations adapt Domino to meet specific audit and reporting requirements.
Compliance certifications and standards
Report a vulnerability
If you find a security vulnerability, please email us with details. If you are a customer and need assistance with your platform, please contact Domino support.
Secure innovation starts at Domino
Join the world’s leading enterprises using Domino to govern and protect AI investments. Get in touch to explore how Domino can safeguard your data, models, and IP.
