Security

You can control how users access Anaplan data through standard web-based login and single sign-on. The logout and timeout behaviors ensure users know they've successfully logged out. They also ensure Anaplan isn't left idle for too long.

Data in Anaplan is encrypted with one of these methods, and depends on the status of the data:

Data in transit uses HTTPS with 2048-bit certificates. Transport Layer Security (TLS) 1.2 is the minimum version that Anaplan supports, and TLS 1.3 is the maximum supported version.
The user's browser negotiates the session key length, ensuring the strongest available encryption is used.
Data at rest uses AES-256 full-disk encryption.

These security and privacy-related frameworks, audits, and certifications apply to Anaplan:

Service Organization Control (SOC) reports
TRUSTe Privacy Seal
Data Privacy Framework (DPF). To learn more about the DPF program, and to view our certification, visit the Data Privacy Framework website .
Cloud Security Alliance STAR
ISO 27001, 27017, 27018, and 27701

Anaplan only supports browsers that use the RFC-6455 WebSocket protocol. If your browser does not support this protocol, some features of Anaplan might be limited. See the Browser Support page for further details.

Encryption

Certifications

communityLink.title

title

caseportalLink.text

registrationLink.text

emailLink.text

callLink.text