New moret 2.0 is here Explore features
moret
TRUST & SECURITY

Your data. Your control.

Enterprise-grade security, enabled by default. No compromises.

GDPR Ready SOC 2 Type II (planned) ISO 27001 (planned)

Security Principles

Zero Data Access

Your data never leaves your infrastructure. moret connects directly to your MongoDB – we never see or store query results.

End-to-End Encryption

TLS 1.3 for all connections. Your data is always encrypted in transit.

No Credential Storage

Connection strings and passwords are never stored on our servers. They stay encrypted in your browser.

Architecture Overview

moret is just an interface – we never store your data.

moret App
Your MongoDB

Compliance & Certifications

GDPR Live

Fully compliant with EU data protection law

SOC 2 Type II Planned

Certification in progress

ISO 27001 Planned

Certification in progress

EU Hosting Live

Servers in Frankfurt (AWS eu-central-1)

Data Handling

What we store

  • Query metadata (timestamps, user IDs)
  • Workspace configurations
  • Audit logs (Enterprise)
  • Usage statistics (anonymized)

What we DON'T store

  • Query results
  • Connection strings / passwords
  • Your database data
  • PII from your queries

Enterprise Security Features

SSO/SAML

Single Sign-On with Okta, Azure AD, Google Workspace

Audit Logs

Complete activity logs for compliance

Role-Based Access

Granular permissions at workspace level

Data Masking

Automatically mask sensitive fields

FAQ

Where is my data stored?
Your MongoDB data is never stored by us. moret is just an interface. The only data we store is metadata (workspace configuration, audit logs) – this is stored on AWS servers in Frankfurt (EU).
Who has access to my MongoDB?
Only you and your team. moret employees have no access to your database. Connection strings are encrypted in the browser and never transmitted to our servers.
Is moret GDPR compliant?
Yes. We process minimal personal data (only email for authentication), store all data in the EU, and offer Data Processing Agreements (DPA) for Enterprise customers.
Can I run moret on-premise?
Yes, for Enterprise customers we offer on-premise and self-hosted deployments. Contact us for details.
How can I report a security incident?
Send an email to security@moret.cloud. We respond within 24 hours and treat all reports confidentially.

Questions about security?

Request Security Whitepaper Book Enterprise Demo