Secure and private communication with Mattermost
Mattermost offers the industry’s most private and secure instant messaging capabilities across all devices. Customers using Mattermost increase their agility and efficiency by bringing all team communication into one place—under extreme security. Mattermost addresses the most challenging private messaging security needs by offering the following:
Certifications
AICPA SOC2 Type 1
AICPA SOC2 Type 2 (2021)
Security architecture and practices
Encryption in transit
Encryption at rest
Network and security hardening
System monitoring
Annual penetration testing
Bug bounty program and Responsible Disclosure Policy
Manual and automated source code reviews
PCI-compliant payment processing with Stripe
Continual Commitment to the principles of GDPR and CCPA
Mattermost Self-Managed Deployments
Secure, on-premises installation in your data center with layered security options (e.g, SSL, VPN and DMZ)
Internally controlled data storage on a database that you own (MySQL or PostgreSQL)
Operation behind your firewall or in your private cloud such as Azure or AWS; no need to send Active Directory data over a public network
Keep integration connections private for tools like Jenkins, Git, and Zoom (750+ integrations)
Mattermost Cloud Enterprise
Dedicated Kubernetes cluster, fully isolated from other customers
The Kubernetes cluster provides all the resources required to run the Mattermost application and is fully managed by Mattermost to the highest security standards, including data encryption at rest and in transit
Pre-configured clusters are “secure by default,” based on industry best practices including encryption, TLS certificates lifecycle management, and automatic security updates
Identity & Device Management Controls
Multi-factor authentication (MFA)
Session duration configuration
User and group provisioning via Active Directory and LDAP
SAML-based single sign-on (SSO)
Certificate-based authentication (CBA)
Enterprise mobile management (EMM)
Block message copy and file download
Minimum app version
Data Protection & Information Governance:
Global retention policies
Compliance exports
Role-based access control with custom permissions
Custom terms of service (TOS)
Block message contents from appearing in mobile application notifications
Case study
For a creative studio like LAIKA, intellectual property is the entire business. It’s critical for a studio to maintain total control over its pre-release assets, such as scripts and storylines, characters, artwork, and other elements that make a film unique and compelling. Learn how LAIKA uses Mattermost to keep its critical communication private and secure.
Community apps and integrations
Open source code integrations developed by the Mattermost community are available for download, customization and deployment to private cloud or on-premises infrastructure. Mattermost connects to hundreds of third-party applications and systems.
Technical Guides and Documents
Read our various user, administration and developer guides to get a deeper understanding of how Mattermost works. The resource page offers every insight into why Mattermost is a vital open source devops tool if you want to increase developer productivity.
Join the world’s best companies on Mattermost