Raygun takes security seriously

  • Strip sensitive data

    Filter out sensitive information from error data, before errors are sent to Raygun.

    See all features
  • Rock solid infrastructure

    Built on AWS infrastructure with options to self-host on enterprise-level plans.

    See all features
  • HIPAA compliant

    Compliant with the needs of medical teams working with patient data.

    See all features
  • 256 bit data encryption

    Encrypted data storage and secure backups keep you and your data protected.

    See all features
  • Two-factor authentication

    Additional protection for your account with TOTP based two-factor authentication.

    See all features
  • Personalized T&Cs

    Custom terms and agreements can ensure that Raygun meets your specific requirements.

    See all features
  • Data removal

    Data is removed from online storage and backups shortly after it expires or is manually deleted.

    See all features
  • Private source maps

    Support for handling private, non public JavaScript source maps and source files.

    See all features
  • Regular pentests

    Raygun conducts regular independent third party pentests.

    See all features

Frequently asked questions

Common security related questions

  • Is data encrypted at rest?

    Your data is encrypted at rest when it is stored on our servers, and encrypted when we transfer it between data centres for backup and replication.

  • Is data encrypted on the wire?

    We encrypt all data that is transmitted between you (or your customers) and Raygun using industry­ standard TLS (Transport Layer Security), protecting the information you send to us.

  • How long do you retain my data?

    Data is maintained in our data stores and backups for up to 2 weeks following removal which is either triggered by you, one of your team, or by Raygun’s data retention policies. After this period the data is completely removed from our systems to support your data retention and destruction policies.

  • How often do you run penetration tests?

    The Raygun platform is regularly audited by an external independent security organisation once per quarter.

  • Can we filter sensitive data out before sending it?

    Yes, you have complete control over the data which is transmitted to Raygun to remove any sensitive data prior to transmission. We provide options for handling this in our standard provider libraries. We strongly advise any sensitive data such as social security numbers or credit card information is removed prior to transmission.

  • Is my data stored in a shared tenancy model?

    Yes, our cloud based service operates using a tenancy based model across our data stores. Access to data is authorised by confirming access for a user to the associated tenancy and ensuring all queries are pre­filtered by the tenancy key.


Used by the world's most innovative companies