At PubNub, we are committed to keeping our systems, data, and product(s) secure so that the interests and privacy of our customers are protected.


Identity and Access Management

PubNub Access Manager provides token-based r/w access control for each channel of data. Real-time token grant / revoke capabilities take effect instantly across all global PoPs.

Data Protection and Encryption

TLS and AES256 encryption, plus support for BYOE (bring-your-own-encryption) models.

Network Security

PubNub’s production environment is separate from the internal organization network, ensuring all customers’ data and functional servers remain safe.

Data Storage

Lock down data storage to specific geographic regions, such as “EU-Only” Storage, “APAC-Only” Storage or “US-Only” Storage.

Physical and Network Security

PubNub uses Amazon Web Services, Inc. (“AWS”) to securely host our servers and all customer data due to its comprehensive compliance and controls.



PubNub’s uptime commitment is 99.999% for select customers, including scheduled maintenance windows.

Breach or Security Incident

PubNub’s breach notification protocol ensures that impacted customers are made aware as soon as an incident is confirmed.

Business Continuity

Our business continuity/disaster recovery plan incorporates input from comprehensive third-party risk management tools.


Security Awareness

All PubNub employees complete ongoing Security Awareness training to protect both PubNub and customer data.

Enterprise Risk Management

PubNub’s process for risk assessment and management is required for all departments and is based on the NIST Risk Management Guide for Information Technology Systems, NIST SP 800-30.

Privacy Program

PubNub’s dedicated Compliance Team ensures that our products reflect best practices in privacy standards and adhere to the latest privacy regulations in all applicable countries and states.

Policies and Procedures

PubNub documents and disseminates best-in-class policies and procedures that both support a culture of ethics and compliance and also serve to address security and privacy risks.