Trust and Security Center
Welcome to Pinecone's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.
Subprocessors
Subprocessors
Security Grades
Security Grades
We are constantly monitoring the security of our website. We will post our grades from public security rating agencies when they become available.
Shai-Hulud
Pinecone is aware of the ongoing Shai-Hulud and Shai-Hulud 2.0 worm campaigns targeting the NPM ecosystem. Following a comprehensive audit of our infrastructure and dependencies, we have confirmed that Pinecone is not affected.
We have successfully deployed monitoring capabilities and detection logic specifically designed to identify this worm. We are actively scanning for compromised packages to prevent any impact on our services or customers.
Pinecone response to Salesloft/Drift Breach
Pinecone completed an internal investigation and confirmed that we have never installed or used any Salesloft integration.
We will continue to monitor our vendor supply chain to assess any potential indirect impact.
Sharepoint Vulnerabilities
Pinecone is aware of the Sharepoint vulnerabilities, we are not directly impacted as we do not use the platform. We are monitoring the situation and will respond to any potential exposure from our third-party service providers, should they arise.
ISO
We're thrilled to announce that Pinecone has achieved ISO 27001:2022 certification! This milestone underscores our unwavering commitment to providing the highest standards of information security for our valued customers.
This globally recognized standard validates that Pinecone has implemented rigorous, industry-leading security controls and processes to safeguard your data. For complete transparency, you can access our ISO 27001:2022 certificate and learn more about our comprehensive security measures within our Security Center: https://security.pinecone.io
Subprocessor Updates
Dear Pinecone customer,
We are writing to let you know that Pinecone is updating its subprocessor list by removing Databricks, adding SendGrid (customer notifications) and Slack (support for select customers), updating existing descriptions to reflect additions to Pinecone offerings, and identifying wholly owned operating affiliates in the UK and Israel. Further detail is available at the Trust and Security Center linked below.
No action is required on your part. You are receiving this email as a representative of a Pinecone customer. If you no longer wish to receive these updates, please click the “Unsubscribe” link below.
For any additional questions, please email security@pinecone.io. As always, thank you for being a Pinecone customer!
DISCO
Terminal X
Aquant
Chipper Cash
Inkeep
New Relic
Vanguard
Obviant
Shortwave
Expel
Gong
ClickUp