KNIME logo
Contact usDownload
KNIME logo

KNIME Business Hub SaaS: Data Security and Privacy

Your Data. Secure, Private, and Compliant.

Angle PatternAngle PatternPanel BGPanel BG

At KNIME, we know that security and privacy are top priorities when your data is concerned. KNIME Business Hub SaaS is built to provide enterprise-grade safeguards while removing the operational burden of hosting and maintaining infrastructure. With KNIME as your managing service provider, you get a dedicated cloud environment designed for secure collaboration and reliable scaling.

Hosting & Infrastructure

Dedicated single-tenant hosting: Each customer receives their own isolated tenant on Amazon Web Services (AWS), with Azure coming soon. This ensures performance isolation and minimizes cross-tenant risk.

  • European and US hosting: Business Hub SaaS is hosted in AWS data centers in Frankfurt, Germany, under European jurisdiction or in the US East zone (North Virginia). Other regions may be considered in the future.
  • Scalable, resilient architecture: Business Hub SaaS runs on Kubernetes (EKS) to ensure high availability, resilience, and the ability to scale resources as business needs grow.

Data Protection by Design

  • Encryption at rest and in transit: All workflows, files, and executed jobs are encrypted by default — stored securely in AWS S3 with server-side encryption (SSE-S3) and protected in transit with TLS 1.2+.
  • Isolated execution environments: Each customer’s workflows run within their own tenant. Executors and jobs are isolated from other customers’ environments.
  • Workflow and data separation: Only authorized users in your organization can access workflows, jobs, or data. Nothing is shared unless you explicitly publish or share it.

Compliance & Certifications

  • ISO 27001 certified: KNIME’s information security management system follows recognized global standards, independently audited for compliance. The ISO 27001 certificate is available on request: teamssupport@knime.com.
  • GDPR, Swiss FADP, and UK GDPR compliant: Business Hub SaaS follows strict data protection rules. Processing is carried out only under lawful bases, retention periods are enforced, and customer data remains under your control.
  • Data Processing Agreement (DPA): Customers may sign a DPA with KNIME AG. Key terms include:
    • KNIME processes data only on documented customer instructions
    • Security measures include encryption, access controls, audits, and incident management
    • Upon contract termination, customer data will be returned or destroyed
    • Liability and duration align with the underlying service agreement

Operational Safeguards

  • Penetration testing: Independent security auditors test the platform at least twice annually, and whenever major changes are introduced.
  • Secure software lifecycle: Development and deployment practices align with ISO 27001 requirements, OWASP Application Security Verification Standard (ASVS), and OWASP Secure Coding Practices.
  • Continuous monitoring: Infrastructure and services are continuously monitored to maintain both security and availability.
  • Incident management: Formal processes ensure rapid response and communication in the event of a security incident.

Your Assurance of Trust

With KNIME Business Hub SaaS, you gain the trusted governance, collaboration, and deployment capabilities of KNIME Business Hub — delivered as a managed cloud service. Our security and privacy practices are designed to ensure that your data remains safe, compliant, and always under your control.

For any further questions or queries, please contact teamssupport@knime.com.