Security Framework
Clear boundaries for compliance and risk management. Prefect manages orchestration, you control execution and data. Prefect never accesses your code or customer data.
Prefect's hybrid architecture creates a clean separation: we manage the orchestration control plane, you manage execution environments and data security.
Security of the orchestration platform
Security in your execution environment
We handle the orchestration platform's security, compliance, and availability. Prefect never accesses your workflow code or the data your workflows process.
Control plane hosted on GCP with multi-AZ high availability
All orchestration metadata encrypted in transit and at rest
Independent certification and continuous monitoring
Secure access to Prefect Cloud UI and API
Continuous updates and security patches
Expert guidance and best practices
You retain full control of your execution environments, workflow code, and data. This ensures your sensitive information never leaves your infrastructure.
Deploy and manage workers in your environment
Protect workflow source code and processed data
Manage team permissions and authentication
Store and manage credentials securely
Control network access and security
Enforce organizational policies
The separation between orchestration and execution creates natural accountability boundaries.
Complete control and accountability
Orchestration metadata only
Workers poll for work via outbound-only connections. Prefect Cloud never accesses your infrastructure, code, or data.
Compliance documentation and security details
Our security team can help you understand responsibilities, compliance requirements, and how Prefect's architecture supports your security posture.