FAQ

Does Anyshift have access to my infrastructure data?

Anyshift requires limited, permission-controlled access to your infrastructure to provide insights. We do not use your data to train AI models.

What cloud access permissions does Anyshift require?

Anyshift requires read-only access to your cloud resources. We recommend using role-based access with least privilege. For Kubernetes, we use a lightweight agent with minimal permissions. For GitHub/GitLab, you can specify which repositories Anyshift can access.

Policies can be even more fine-grained than read-only. For example, you can grant permissions that only allow listing of instances, as described in our AWS integration documentation.

Does Anyshift have access to my application code or other intellectual property?

No, Anyshift does not require or access your application code or other intellectual property. We only require access to your infrastructure-as-code (IaC) codebases (such as Terraform, CloudFormation, etc.) to correlate infrastructure resources with their definitions and provide insights. IaC access can be provided via a GitHub app, manual export, or offline archive, and is permission-controlled.

Does Anyshift have access to the secrets in my Terraform states?

Secrets in your Terraform state files can be anonymized before Anyshift ingests them. With our optional anonymization pipeline, a Lambda function you control removes sensitive data, ensuring secrets are never exposed to Anyshift. The Lambda code is available for audit.

How does Anyshift isolate customer data?

We use strict data isolation, strong access controls, and encryption in transit and at rest to ensure no customer can access another customer’s data.

How does Anyshift handle AI and data sovereignty?

We have agreements with our AI providers to prevent your data from being used for model training. For strict data residency needs, we offer deployment options that keep sensitive data within your infrastructure.

Does Anyshift support on-premises deployment?

Yes, for enterprise customers with strict data residency requirements, we offer deployment options that keep your data within your infrastructure boundaries.

Is Anyshift SOC 2 compliant?

Anyshift is in the process of obtaining SOC 2 compliance to ensure the highest standards of security and data protection.

I have more questions about security.

Email contact@anyshift.io or schedule a call with our security team.


Our website uses cookies to enhance your experience and provide analytics:

  • Essential cookies for core functionality
  • Analytics cookies to improve our service
  • Full cookie policy available at anyshift.io/cookies