Merge encrypts all data at rest and in-transit!
All our data is stored in AWS, and is encrypted using the AES-256 encryption algorithm. Data is not allowed to be stored on external media, and production data is never moved out of production environments. Additionally, employees are only granted permission to view customer data upon customer request.
In regards to the location in which data is stored, EU data will only be stored in the Stockholm AWS region and APAC data will only be stored in the Singapore AWS region. Single-Tenant Environments are also available for purchase for as part of an annual plan if an additional level of security is required.
Customer credentials are encrypted at-rest and in-transit. We utilize two separate layers of encryption, one at the storage layer, and another at the application layer, to ensure that credentials are secured.
You can see here we are listed as a sub-processor for Drata, one of our customers who is a market leader in the data security and compliance space. Drata is trusted by large organizations to help them achieve and maintain security certifications including; SOC 2, ISO 27001, PCI DSS & HIPAA.
Merge does not currently offer on-prem. We do offer a single-tenant environment, where your data is hosted in an AWS region of your choice. You receive your own servers and databases, and though Merge manages it, your data is fully separated from that of other Merge customers.
By default, yes. Merge stores both end-user data and end-user credentials. This allows us to provide fast syncs, normalized APIs, and enhanced product features.
However, if your organization requires a zero-data-retention model, Merge Destinations enables you to stream data directly to your own environment without Merge storing it.
Merge has three default, multi-tenant data centers: AWS Virginia, AWS Stockholm, and AWS Singapore. All three are available at no additional cost and can be used in parallel if you have a global customer base.
For increased control, Merge offers:
Single-tenant environments hosted in a region of your choice.
Merge Destinations, which allows data to bypass Merge’s storage entirely and be streamed directly into your systems (e.g., Snowflake, S3, BigQuery). Compatible with both single and multi tenant environments.
Reach out to our sales team for more information.
Customer data and credentials are stored indefinitely, until actively deleted by the Merge customer. Linked accounts can be deleted from the Dashboard, or over API.
Please note: revoking an integration will NOT delete existing data for the Linked Account, it will only prevent new data from being created.
There are many reasons why Merge decided to store data, rather than serving as a passthrough-only platform. A few of these reasons are highlighted below.
Efficiency: Storing data allows Merge to increment on our database, rather than performing a full refresh on each sync. This allows us to resync your data more often and more quickly, while still complying with 3rd party rate limits.
Product Features: Storing data allows Merge to build many features on top of our internal database, including webhooks, endpoint filters, common model scopes, and partial syncing.
De-Risking: Having an internal database makes Merge customers less vulnerable to 3rd party outages and API changes
Normalization: Ultimately, every 3rd party API is unique. By storing customer data, Merge can obfuscate most of these differences behind our API. Merge customers do not need to be concerned with 3rd party rate limits, API format (ie REST vs SOAP), available filters, or 3rd party API architecture as a result.
That said, if you’d prefer Merge not store any customer data, Merge Destinations offers a streaming-only option that still provides all of Merge’s syncing and normalization benefits, without data ever resting on Merge infrastructure.
Merge Destinations is a premium offering that allows you to retain full control over your data by streaming it directly into your own infrastructure. Merge still handles data syncing, normalization, and integration observability - but we do not persist any customer data on Merge servers.
With Destinations:
Data is streamed directly to your cloud environment (e.g., Snowflake, S3, BigQuery).
Merge never stores your end-user data at rest.
You retain full control and can revoke access at any time.
This offering is especially useful for customers with strict data residency, compliance, or privacy requirements.
Security is at the core of the Merge product, and we know that storing sensitive data is a major factor in the consideration of any sub-processor. To ensure the security of end user data, we invested extensively in our security credentials and infrastructure. Please review the resources below, or reach out to [email protected] if you have any questions on our security practices.