// Trust & Security Report
Anyscale, Inc.
Anyscale Platform (managed Ray for distributed AI/ML training, inference, batch data, and post-training), built by the creators of the open-source Ray compute engine.
Certifications held
4
Maturity
Enterprise
Trains on your data
No
Trust center
Yes
// Certification ledger
Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.
Verify on trust.anyscale.com“CERTIFICATIONS — SOC 2 Type II Report ... Jun 13, 2025 SOC 2 Type II Report”
Verify on trust.anyscale.com“ISO/IEC 27001 Certificate ... Oct 8, 2025 Anyscale, Inc. Successfully Achieves ISO/IEC 27001 Certification”
// Privacy & AI training
Trains on customer data
No
Data processing agreement
Offered
Data region
Dual-plane architecture: the Customer Data Plane (where customer data and workloads run) executes inside the customer's own cloud account or Kubernetes cluster (AWS, GCP, Azure) via Bring-Your-Own-Cloud, so sensitive data stays in the customer's VPC. Only orchestration metadata flows to the Anyscale Control Plane. Application logs and customer data are stored locally on the cluster; ingested logs for the log viewer are opt-in by default for Anyscale Hosted clouds. Subprocessors are US-based (AWS, Google, Microsoft, Pylon) with Tailscale in Canada.
Anyscale is an infrastructure/compute platform, not a foundation-model trainer on customer workloads. Its Privacy Notice does not apply to Customer Data (the customer remains controller of data processed in their own clusters). Anyscale states it may use Usage Data to develop, improve, support, and operate its products and services, which is operational telemetry, not training models on customer datasets or code. No evidence of training on customer business data by default. A DPA and Data Security Addendum are referenced as part of the agreement, with a Supplemental Notice for EU/UK GDPR.
// Security controls
Penetration testing
Yes. Third-party penetration test conducted; 2025 executive summary available via trust center on request.
trust.anyscale.comVulnerability disclosure
Trust center provides a 'Report a vulnerability' channel and trust@anyscale.com. No public HackerOne/Bugcrowd bug-bounty program found.
trust.anyscale.comEncryption
Encryption in transit and at rest using industry-standard algorithms; managed key lifecycle; encrypted backups; server certificate authentication.
trust.anyscale.comAccess control
Role-based access control, least privilege, quarterly logical access reviews, password policy enforcement, onboarding/offboarding workflows. SSO, SAML, SCIM, and audit logs for enterprise governance.
trust.anyscale.comInfrastructure security
Network segmentation, firewall with default deny, intrusion detection system, immutable infrastructure deployments, automated capacity monitoring.
trust.anyscale.comDedicated security team
Anyscale states it has a dedicated internal security team with documented controls and policies.
trust.anyscale.com// Products & data scope
data: Anyscale-hosted control and data plane; log ingestion opt-in by default; covered by SOC 2 Type II and ISO 27001.
Fastest onboarding; suited to teams without strict data-residency constraints. Free tier with $100 credit available.
data: Customer Data Plane runs inside the customer's own AWS/GCP/Azure account or Kubernetes cluster; data does not leave the customer network perimeter. Only orchestration metadata reaches the Anyscale Control Plane.
Preferred for regulated/enterprise workloads needing data residency and isolation. Supports EC2/VM, EKS, SageMaker HyperPod, GKE/Kubernetes.
data: Self-hosted; runs entirely in the user's own environment; no Anyscale data processing.
Foundation that Anyscale commercializes; 500M+ downloads, 41K+ GitHub stars. No vendor compliance scope since it is self-operated.
// What to watch
- No public bug-bounty platform (HackerOne/Bugcrowd); disclosure handled via trust center contact only.
- Cert artifacts (SOC 2 report, ISO certificate, pen test summary) are gated behind 'Request access' on the trust center, not publicly downloadable.
- Hosted-cloud log ingestion is opt-in by default, so customers using the hosted plane should review log-data flow to the control plane.
// At a glance
Pricing model
Usage-based (compute consumption) with a free tier / $100 starting credit; enterprise contracts via sales. Available on AWS Marketplace.
Self-hostable
Yes
// How we verified this
Every certification marked HELD is confirmed against a verbatim quote on Anyscale, Inc.'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.
Last verified 2026-06-27. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.
trust.anyscale.com