Trust and Security Center

Dear Pinecone customer,

We are writing to let you know that Pinecone is updating its subprocessor list by removing Databricks, adding SendGrid (customer notifications) and Slack (support for select customers), updating existing descriptions to reflect additions to Pinecone offerings, and identifying wholly owned operating affiliates in the UK and Israel. Further detail is available at the Trust and Security Center linked below.

No action is required on your part. You are receiving this email as a representative of a Pinecone customer. If you no longer wish to receive these updates, please click the “Unsubscribe” link below.

For any additional questions, please email security@pinecone.io. As always, thank you for being a Pinecone customer!

We're thrilled to announce that Pinecone has achieved ISO 27001:2022 certification! This milestone underscores our unwavering commitment to providing the highest standards of information security for our valued customers.

This globally recognized standard validates that Pinecone has implemented rigorous, industry-leading security controls and processes to safeguard your data. For complete transparency, you can access our ISO 27001:2022 certificate and learn more about our comprehensive security measures within our Security Center: https://security.pinecone.io

In response to the recently discovered LDAPNightmare Exploit, Pinecone has investigated all of our systems and found we are not vulnerable.

Pinecone is not affected by the Polyfill.io supply chain attack

Our security team has reviewed all code and can confirm no vulnerable javascript libraries or references to their domains exist.

Pinecone is aware of Snowflakes' security event. We are not a customer of their platform and have no direct impact. We are monitoring the situation and will respond to any potential exposure from our third-party service providers, should they arise.