Security used to mean locking the door
Deployment options to fit any need. Every one with manufacturing-grade security.
Security for companies of 5 to 500,000.
We take security seriously. Data security and customer trust are at the heart of everything we do at Tulip. We are dedicated to exceed the industry standard when it comes to protecting your organization. We embed security not only into our products, but into the very fabric of our operational and organizational processes.
Integrations
Seamless integrations extend your security controls in the cloud. Our Single-Sign-On (SSO) and LDAP integrations allow your users to sign in using their existing enterprise credentials.
Permissions
Manage permissions throughout the platform to ensure the right people see the right information.
Privacy
Protect your worker’s data to comply with your policies, your industry and country’s regulations.
Total Visibility and Control
Easily manage access to your operations applications with granular governance and administrative controls.
Data Integrity
Your data is protected from your workstations to the cloud and back again. All content you store with Tulip is encrypted in transit and at rest.
Privacy that fits your needs
Tulip protects our customers’ and their employees’ privacy. We help our customers meet global privacy obligations, such as the Global Data Protection Regulation (GDPR).
Industrial-grade compliance.
FDA GMP
EAR
GDPR
ITAR
EU GMP
Control your data
Manage granular permission controls and app versioning to ensure the right people access the right information.
Secure
Tulip’s robust internal and external data control options protect even your most sensitive data with security and privacy controls like SSO.
Compliant
We understand every industry has different regulations and we’ve architected our platform to be compliant.
Available
Tulip uses hosting partners that provide 99.9% uptime SLAs with multiple data centers that are designed to anticipate and tolerate failure while maintaining service levels.
Product Security Features
SSO & LDAP
Single Sign-on (SSO) and Lightweight Directory Access Protocol (LDAP) allow you to authenticate users in your own systems.
SAML
Integrate Tulip with your existing SAML provider.
Password and Credential Storage
We enforce password complexity standards.
Uptime
Our cloud hosting partners maintain an uptime of 99.9% or higher. You can check current status here.
Network & Application Security Features
Virtual Private Cloud
All of our servers are within our own virtual private cloud (VPC) with network access controls that prevent unauthorized access to our internal network.
Back Up and Monitoring
Tulip uses a hosted backup solution for datastores that contain customer data. All of our AWS data is backed up daily.
Encryption
All data sent to or from Tulip is encrypted in transit using 256 bit encryption. Our API and application endpoints are TLS/SSL only and score an “A+” rating on Qualys SSL Labs’ tests.
Vulnerability Scanning
Tulip uses third party security tools to continuously scan for vulnerabilities on the Tulip application and infrastructure.
Additional Security Features
Training
All employees complete security and awareness training annually.
Confidentiality
All employee contracts include a confidentiality agreement.
Electronic Signatures
Enable requirements for Electronic Signature and biometric authentication.
PCI Obligations
All payments made to Tulip go through our partner, Stripe. Details about their security setup and PCI compliance can be found here.
Flexible Deployment
We understand every company has different needs. When it comes to deployment, we have options for companies of any size and industry, from a handful of employees in craft goods to manufacturers of classified aerospace components.
Hardened Public Cloud
Tulip is deployed on Amazon Web Services infrastructure.
Private Cloud
Deploy on your private cloud infrastructure (only available to enterprise customers).
On-Premise
Deploy on-premise on your internal infrastructure (only available to enterprise customers).
Talk to a Tulip application architect about our deployment options.
Learn more about our security practices.