Over 50%
of the 10 largest US banks
use Stack Internal †

Safe, secure and always private

Security isn’t a bolt-on. It’s built into everything we make, so you can use our products with confidence.

† based on the Federal Reserve Statistical Release

Certified, trusted and compliant

ISO 27001/27701 ISO certified by Schellman
SOC 2
Type II
SSO & SCIM
provisioning
GDPR & SCC

Keeping your knowledge protected

Precise control

Private teams mean only the right people see your info. Plus, our SCIM 2.0 integrates with your provider to manage status, roles and access.

Advanced encryption

Your data is always protected, at rest and in transit, by a combination of HTTPS, SQL Transparent Data Encryption (TDE) and AES-246.

Built to last

We build using the ISO 27001:2013 framework. This means your data has the highest level of protection, and it stays protected for the long haul.

Your data, your rules

Separate databases

Your data is isolated into its own SQL schema, stored separately. Plus, our AI features run on a stateless, private process, so data can’t be intercepted.

Smart monitoring

We constantly monitor our systems using a smart platform, ensuring maximum health and real-time insights into our Azure and OpenAI deployments.

Your data stays yours

We don’t train on your data. Ever. So you can trust that your knowledge is completely private and never shared with any third party.

Features for control, clarity and choice

Role-based access controls

Protect sensitive data, make sure only the right people can access certain content, and help teams collaborate securely.

Multi-team permissions

Set access rules for individuals or entire teams, maintain consistent security, and speed up onboarding.

Audit trails

See who did what, when, and why. Audit trails give you full visibility so teams stay accountable, and you can stay compliant.

Secure sign on

Log in instantly wth company credentials, giving you stronger, centralized control and better protection.

MCP Server

Lives in your system so you maintain control, and connects your AI tools to verified knowledge, safely and compliantly.

SQL Schema

Our products isolate your data in its own SQL schema, stored securely in separate databases that only your team can access.

Private teams

Organize your people by role and team to control content access – and ensure knowledge sharing follows your policies.

Dashboard & analytics

See who’s sharing what, how often they’re engaging and where you stand on compliance across teams and regions.

Some features may not be available on all plans
Pricing & plans

Talk to our experts about your security needs.

Frequently Asked Questions

Your questions about security and privacy answered.

Is client data encrypted?

Stack Internal requires the use of HTTPS in order for our clients to communicate with the site. Data is encrypted in-transit and at-rest.

Who has access to login details?

Stack Overflow doesn’t store usernames or passwords that are owned and managed by your organization because we require you to configure a SAML 2.0 Identity Provider (IdP) in order for users to access the site. To successfully log in with an account from a configured SAML 2.0 IDP, we require a unique ID, an email, and a full name.

What Security certifications do you have on an organizational level?

Our Business and Enterprise plans have SOC 2 Type II reports, and our Enterprise plan is ISO 27001 and ISO 27701 certified.

Where is customer data stored on the Business and Enterprise plans of Stack Internal?

For Business and Enterprise Cloud options, we use Microsoft Azure Cloud, which means you’ll have world class infrastructure and security of the platform as your backbone. Our Business and Enterprise plans include SOC 2 Type II reports along with other robust security measures.

How do you separate my Enterprise data from other customers’ data?

Each Enterprise instance of Stack Internal is isolated in its own Virtual Network within our Azure Cloud Subscription. This means that the infrastructure for your instance is not shared among our customer base and we provision each customer’s infrastructure in such a way that traffic and data never cross customer boundaries. The Business plan is multi-tenant, and customer data is logically separated in the database.

Can issues on other Cloud Hosted Business and Enterprise clients’ instances affect my data?

Isolated cloud infrastructure is provisioned for Enterprise customers. Business instances share infrastructure, particularly networking and databases. Databases are logically separated.

What encryption is used on Azure?

We use SQL Transparent Data Encryption (TDE), and all data is encrypted at rest using AES-256.

Who has admin access at Stack Overflow?

Access is restricted to Site Reliability Engineers for Stack Internal Business and Enterprise plans who have been trained on the information security policies and guidelines in place. This includes guidelines for data loss and leakage prevention, which aim to prevent customer data from ever leaving the provisioned Cloud environment.

Where can I learn more about Azure Cloud?

Since we run and manage the Enterprise and Business plans through a SOC 2 Type II attested and ISO27001 certified Azure Cloud, you can learn all about it in detailed specifications published by Azure Cloud on the security of its public cloud platform and infrastructure.

Is my data used to train AI models?

No, we do not use any customer data for model training purposes.

How is my organization’s data isolated from other customers?

Stack Internal maintains strict data isolation using an architecture with isolated compute and storage to ensure your data is separated from other customers. Furthermore, our core Enterprise product has been audited for security and privacy under multiple frameworks and is ISO 27001:2013/27701 certified and SOC 2 Type 2 attested.

Which AI model does Stack Internal use?

We use Azure OpenAI GPT-4o mini model, which was trained on various datasets found on the Internet.