Security

How we protect your data and integrations.

Last updated: June 17, 2026

Infrastructure

Current runs on AWS infrastructure with SOC 2 Type II compliant data centers. All data is encrypted at rest using AES-256 and in transit using TLS 1.2+.

Integrations & access

When you connect Slack or Notion, Current uses official OAuth flows and requests only the minimum permissions needed. We never store your Slack messages or Notion page content on our servers — processing happens in memory only.

Audit logs

Every suggestion, approval, rejection, and write to your knowledge base is logged with a timestamp, user attribution, and a full diff. Logs are immutable and exportable on Growth plans and above.

Access controls

You control who can connect sources, approve changes, and manage settings. Admins can revoke access instantly. We support SSO/SAML on Enterprise plans.

Responsible disclosure

Found a vulnerability? Please email security@current.so. We aim to respond within 24 hours and will work with you to resolve issues quickly.