# Security overview & certifications

This documentation is intended for:

* IT administrators
* Security and compliance teams
* Architects and procurement reviewers

Security responsibilities vary depending on the **deployment model (Share or Enterprise)** and the **product used**, but the same core security principles apply across all Apps for Tableau.

***

### ISO/IEC 27001:2022 Certification

Infotopics | Apps for Tableau is **ISO/IEC 27001:2022 certified**, the globally recognised standard for Information Security Management Systems (ISMS).

This certification confirms that Infotopics:

* Identifies and manages information security risks
* Applies formal security controls and policies
* Continuously monitors and improves security practices
* Is independently audited on a regular basis

<figure><img src="https://1734369479-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FJjt7zXdgUjvEf9GT1Q3y%2Fuploads%2FLlsYPIwiHQGAlwwMlEX9%2Fimage.png?alt=media&#x26;token=530fa5ba-1b4d-44d5-8241-842b7dd43271" alt=""><figcaption></figcaption></figure>

The ISO certification applies particularly to **Share (SaaS) deployments**, where Infotopics operates and secures the hosting environment on behalf of customers.

***

### Security governance

Infotopics maintains a structured security governance framework that includes:

* Documented security and access policies
* Role-based access control
* Secure development lifecycle practices
* Incident detection and response procedures
* Regular internal and external security reviews

Security is treated as an ongoing process, not a one-time activity.

***

### Secure-by-design approach

All Apps for Tableau are designed to:

* Minimise data exposure
* Respect Tableau’s security model
* Avoid unnecessary data storage
* Operate transparently within customer environments

### Security whitepaper

Infotopics provides a detailed **Security Whitepaper** that explains how Apps for Tableau are designed, deployed, and operated securely.

The whitepaper covers:

* Security architecture and principles
* Tableau Extensions security model
* SaaS (Share) and Enterprise deployment security
* Data protection and operational safeguards

The document is intended for IT, security, and compliance reviews.

[Download the Security Whitepaper](https://indd.adobe.com/view/841678f9-7b3b-433e-bed8-305e16710048)