Security FAQ
How is my data protected?
How is my data protected?
Each GPU instance runs in an isolated container. Your data is not accessible to other users. Storage volumes are private to your project and encrypted at rest by the storage backend (Wasabi, AWS S3, or Backblaze B2).
How do I control access to my instances?
How do I control access to my instances?
Instances are accessed via SSH using keys you register in the dashboard. Only public keys you add to your project are injected into new instances. See SSH Keys for setup.
How are API keys secured?
How are API keys secured?
API keys are shown in full only once at creation. They are stored securely and transmitted over HTTPS. You can deactivate or delete keys at any time. Keys are scoped to a single project. See API Keys for best practices.
Does Runcrate have role-based access control?
Does Runcrate have role-based access control?
Yes. Each project supports three roles: Owner, Admin, and Member. Owners have full control, Admins can manage resources and billing, and Members can deploy and manage resources but cannot access billing or team settings. See Teams for the full permissions table.
Can I see who did what in my project?
Can I see who did what in my project?
Yes. Audit logs record every significant action in your project, including who performed it, when, from what IP address, and what was changed. Audit logs are available to Owners and Admins.
How are payments secured?
How are payments secured?
All payment processing is handled by Stripe, which is PCI DSS Level 1 certified — the highest level of payment security. Runcrate never stores your full card details. See Payment Methods for more.
What happens to my data when I terminate an instance?
What happens to my data when I terminate an instance?
When you terminate an instance, the container and any data stored locally on the instance are deleted permanently. Data stored on a mounted storage volume persists and remains accessible. See Storage Overview for details.