Security - 安全 | JoeyToday

We know you've entrusted us with valuable data, and we take its security very seriously. Below, we've provided a deep dive into our security practices, protocols and tooling. But we're always available to answer questions on this topic. Just send us a note at [email protected]. 🔐

Security practices

The following list was last updated Jul 8, 2019

We use SSL everywhere, within the data center and out.

Your data is encrypted at rest and in transit.

We run 100% on the cloud using AWS within a virtual private network that cannot be accessed via the public internet, except via our public-facing proxy servers.

We have Amazon CloudTrail turned on at all times.

We perform quarterly independent security audits using established security firms.

We'll notify you within 72 hours of learning about a data breach.

All employees receive regular security training.

We're in the process of obtaining our SOC2 certificate.

Sub-processors

We work with the following companies and tool systems to store, analyze, and transmit data for our users. They've been carefully vetted for best-in-class security practices.

Amazon Web Services

Amplitude

Segment

Crashlytics

Intercom

Loggly

Snowflake

Fivetran

Stripe

Glossary

SSL (Secure Sockets Layer) is the industry standard for customer protection on the web. It instantly encrypts plain text (your data, including passwords and credit card numbers) that only you can decrypt. Here's a video explainer in case it's helpful.

Amazon VPC (Virtual Private Cloud) allows Notion to implement granular network control and security measures.

Amazon CloudTrail helps Notion with the governance, compliance, operational auditing, and risk auditing of our AWS account.

The folks we work with at NCC Group are the global experts in cyber security and risk mitigation. They help us with services such as penetration testing, overall software security, security training, and vulnerability protection.

SOC 2 is a security report based on AICPA's Trust Services Criteria.

FAQs

Will other people be able to see my private notes and data?

Your data is safe in Notion! Only you will have access to your private notes.

If someone tries to navigate to your workspace without having access, they'll see an error message like this:

Worth noting:

If you enable Public Access in the Share menu at the top right of a page, it will publish that page to the web so that anyone with the link can access it. This is always turned off by default.

If you're sharing a workspace with others, any notes in the Workspace section of your sidebar will be visible to everyone in the workspace. You can store your private notes in the Private section of the sidebar for shared workspaces — no one else will be able to access these pages, even admins. If your sidebar doesn't have those sections, you're the only person in your workspace, and all your notes are private!

Can I opt out of Notion's tracking/analytics?

Yes you can! This will also disable Intercom, who powers our in-app support chat, but you can still reach out to us for help at [email protected].

Just send a message to our support team at that address and we'll opt you out.

Why can I still access my uploaded files via the AWS URL without being logged in?

Your files are secure! You're looking at a signed URL that will expire after 24 hours.

Any files uploaded to Notion will remain secure private files. You'll notice they point to a URL that has secure.notion-static.com inside it.

Related guides

Something we didn't cover? Message us in the app by clicking ? at the bottom right on desktop (or in your sidebar on mobile). Or email us at [email protected] ✌️

我们深知你已将宝贵的数据托付给我们，所以我们非常重视其安全性。下文深入探讨了我们的安全实践，协议以及工具。同时，我们总是乐意围绕这一话题解答你的疑问，只需将信息发送到 [email protected] 。🔐

安全实践

下列清单更新于 Jul 8, 2019

我们在数据中心内外都在使用 SSL 。

数据在静态和传输过程中都会被加密。

我们的服务使用 AWS 通过 VPN 完全运行在云端，除非通过面向公众的代理服务器，否则该网络无法通过公共互联网访问。

Amazon CloudTrail 始终开启。

我们使用第三方安全公司进行季度独立安全审计。

我们会在数据发生泄露的72小时内通知你。

所有员工均接受定期安全培训。

我们正在获取 SOC2 证书。

子处理器

我们与以下公司和平台合作以存储，分析和向用户传输数据。他们有着一流的安全实践并已经过仔细的审查。

Amazon Web Services

Amplitude

Segment

Crashlytics

Intercom

Loggly

Snowflake

Fivetran

Stripe

术语表

SSL（安全套接字层）是网络上保护客户的行业标准。它会实时加密纯文本（你的数据，包括密码和信用卡号）并且只有你才能解密。这个视频有助于你理解它的作用。

Amazon VPC（虚拟私有云）允许 Notion 实施精细的网络控制和安全监测。

Amazon CloudTrail 帮助我们对自己的 AWS 账户进行管理，以满足合规性，运营审核和风险审核。

我们与 NCC Group 合作，他们是全球网络安全和风险控制方面的专家，为我们提供诸如渗透测试，软件整体安全性，安全培训和漏洞保护等服务。

SOC 2 是基于 AICPA “信任服务标准”的安全报告。

常见问题

其他人能否查看我的个人笔记和数据？

你的数据在 Notion 是安全的！只有你可以访问你的个人数据。

如果有人在未经授权的情况下访问你的 workspace（工作区），他们将看到这样的错误信息：

注意事项：

如果你启用了 page（页面）右上角 Share（分享） 内的 Public Access（公众访问） ，这将在网络上公开该 page（页面）。持有链接的任何人都可以访问它。这一选项默认是关闭的。

若将 workspaces（工作区）与他人共享，那么该 workspaces（工作区）的所有 members（成员）都能看到 sidebar（侧边栏）中位于 Workspace（工作区） 区域的 page（页面）。你的个人数据可以存放于共享 workspaces（工作区）的 Private（私人） 区域，那么其他人（包括管理员）将无法访问这些 pages（页面）。如果你没有这样的区域，意味着你是该 workspace（工作区）的唯一用户，那么所有内容都是私有的。

我可以选择退出 Notion 的跟踪/分析吗？

当然！这也会禁用在应用内与客服聊天的 Intercom，但你仍然可以通过 [email protected] 与我们联系以寻求帮助。

只需在该地址向我们的支持团队发送消息，我们就会将你退出。

为什么我仍然可以通过 AWS URL 访问上传的文件而无需登录？

您的文件是安全的！您正在查看的签名 URL 将在24小时后失效。

上传到 Notion 的所有文件都是安全且私有的。你会注意到它们指向的 URL 包含 secure.notion-static.com 。