Skip to main content


Security is about protecting the data that your organization uses, stores, and transmits. This data might be sensitive data about customers, financial information, or critical line-of-business data for your organization.

With Cognite, you are the owner of your data. We use your data only to provide agreed-upon services. We handle your data securely, and we comply with privacy and legal regulations. If you leave our services, we make sure that you continue to own your data.

Shared security responsibility

Depending on the type of service you select, some security protections are built into the service, while others will remain your responsibility. With CDF, security is a collaboration between the customer, Cognite, and the cloud service provider (for example Microsoft or Google).

Identity and access management

Authentication and authorization are two critical concepts in identity and access management.

  • Authentication is about determining the identity of a person or service trying to access a resource. It establishes if they are who they say they are.

  • Authorization defines what level of access an authenticated person or service has. It specifies what data they're allowed to access and what they can do with it.

Cognite has built-in features to integrate with your organization's identity provider (IdP) and manage and update your access management and data governance policies quickly and securely.

More information