// Trust & Security Report

    Anyscale, Inc. logo

    Anyscale, Inc.

    Anyscale Platform (managed Ray for distributed AI/ML training, inference, batch data, and post-training), built by the creators of the open-source Ray compute engine.

    Certifications held

    4

    Maturity

    Enterprise

    Trains on your data

    No

    Trust center

    Yes

    // Certification ledger

    Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.

    SOC 2 Type II
    HELD

    CERTIFICATIONS — SOC 2 Type II Report ... Jun 13, 2025 SOC 2 Type II Report

    Verify on trust.anyscale.com
    ISO/IEC 27001
    HELD

    ISO/IEC 27001 Certificate ... Oct 8, 2025 Anyscale, Inc. Successfully Achieves ISO/IEC 27001 Certification

    Verify on trust.anyscale.com

    // Privacy & AI training

    Trains on customer data

    No

    Data processing agreement

    Offered

    Data region

    Dual-plane architecture: the Customer Data Plane (where customer data and workloads run) executes inside the customer's own cloud account or Kubernetes cluster (AWS, GCP, Azure) via Bring-Your-Own-Cloud, so sensitive data stays in the customer's VPC. Only orchestration metadata flows to the Anyscale Control Plane. Application logs and customer data are stored locally on the cluster; ingested logs for the log viewer are opt-in by default for Anyscale Hosted clouds. Subprocessors are US-based (AWS, Google, Microsoft, Pylon) with Tailscale in Canada.

    Anyscale is an infrastructure/compute platform, not a foundation-model trainer on customer workloads. Its Privacy Notice does not apply to Customer Data (the customer remains controller of data processed in their own clusters). Anyscale states it may use Usage Data to develop, improve, support, and operate its products and services, which is operational telemetry, not training models on customer datasets or code. No evidence of training on customer business data by default. A DPA and Data Security Addendum are referenced as part of the agreement, with a Supplemental Notice for EU/UK GDPR.

    // Security controls

    Penetration testing

    Yes. Third-party penetration test conducted; 2025 executive summary available via trust center on request.

    trust.anyscale.com

    Vulnerability disclosure

    Trust center provides a 'Report a vulnerability' channel and trust@anyscale.com. No public HackerOne/Bugcrowd bug-bounty program found.

    trust.anyscale.com

    Encryption

    Encryption in transit and at rest using industry-standard algorithms; managed key lifecycle; encrypted backups; server certificate authentication.

    trust.anyscale.com

    Access control

    Role-based access control, least privilege, quarterly logical access reviews, password policy enforcement, onboarding/offboarding workflows. SSO, SAML, SCIM, and audit logs for enterprise governance.

    trust.anyscale.com

    Infrastructure security

    Network segmentation, firewall with default deny, intrusion detection system, immutable infrastructure deployments, automated capacity monitoring.

    trust.anyscale.com

    Dedicated security team

    Anyscale states it has a dedicated internal security team with documented controls and policies.

    trust.anyscale.com

    // Products & data scope

    Anyscale Platform (Hosted)Managed AI compute / distributed training & inference

    data: Anyscale-hosted control and data plane; log ingestion opt-in by default; covered by SOC 2 Type II and ISO 27001.

    Fastest onboarding; suited to teams without strict data-residency constraints. Free tier with $100 credit available.

    Anyscale Bring-Your-Own-Cloud (BYOC)Self-managed data plane in customer VPC

    data: Customer Data Plane runs inside the customer's own AWS/GCP/Azure account or Kubernetes cluster; data does not leave the customer network perimeter. Only orchestration metadata reaches the Anyscale Control Plane.

    Preferred for regulated/enterprise workloads needing data residency and isolation. Supports EC2/VM, EKS, SageMaker HyperPod, GKE/Kubernetes.

    Ray (open source)Open-source distributed compute engine

    data: Self-hosted; runs entirely in the user's own environment; no Anyscale data processing.

    Foundation that Anyscale commercializes; 500M+ downloads, 41K+ GitHub stars. No vendor compliance scope since it is self-operated.

    // What to watch

    • No public bug-bounty platform (HackerOne/Bugcrowd); disclosure handled via trust center contact only.
    • Cert artifacts (SOC 2 report, ISO certificate, pen test summary) are gated behind 'Request access' on the trust center, not publicly downloadable.
    • Hosted-cloud log ingestion is opt-in by default, so customers using the hosted plane should review log-data flow to the control plane.

    // At a glance

    Pricing model

    Usage-based (compute consumption) with a free tier / $100 starting credit; enterprise contracts via sales. Available on AWS Marketplace.

    Self-hostable

    Yes

    // How we verified this

    Every certification marked HELD is confirmed against a verbatim quote on Anyscale, Inc.'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.

    Last verified 2026-06-27. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.

    trust.anyscale.com

    > Browse all vendor trust reports