Otonomo Security
Protect drivers by protecting car data
Comprehensive Security Builds Consumer Trust
Otonomo is committed to the security of our Automotive Data Services Platform. We secure data at all stages in its lifecycle and employ technology, people, and processes to protect automotive data. We believe that comprehensive security is the key to consumer trust and a thriving connected car data ecosystem.
End-to-End Security Controls
Automotive data is protected end to end — from ingestion to use in mobility services.
Encryption
Data is encoded throughout its lifecycle to ensure data protection.
Security
Sophisticated built-in security systems protect against external threats.
Monitoring
Technologies and procedures are in place to look out for potential threats.
Privacy
Only authorized services can access automotive data from Otonomo.
Certification
Otonomo is ISO 27001 certified ensuring secure management of data.
Otonomo is Committed to Putting Drivers First
Working with Otonomo means working with a vetted, secure solution & partner who understands that you expect a return on your security investment.
ISO27001
Otonomo is committed to security – and aligned to the International Standards Organization (ISO) 27001 standard, an internationally recognized framework for best practices in information security management.
ISO27001 alignment implements standards to help protect the confidentiality, integrity, and availability of an organization’s data.
GDPR
Otonomo is committed to the General Data Protection Regulation (GDPR).
We take customer data privacy seriously, ensuring that:
- All new vendors, assets and activities pertaining to processing personal data are subject to a review of privacy, security and compliance.
- Personal data is properly collected, stored, and documented.
- Relevant processes are followed for transfers of personal data outside the European Union / UK.
- For more information, see our privacy policies here.
California Consumer Privacy Act (CCPA)
The California Consumer Privacy Act (CCPA) was enacted into law on June 28, 2018.
The CCPA seeks to ensure California consumers have a certain level of privacy rights.
For information on how collects and uses customer personal information, please visit our Privacy Notice

Bug Bounty Program
Otonomo strongly believes close partnerships with researchers make customers more secure.
Security researchers play an integral role in the ecosystem by discovering vulnerabilities missed in the software development process.
If you are a security researcher that has found a vulnerability in a out product or service we want to hear from you.
If your vulnerability report affects a product or service that is within scope of one of our bounty programs below, you may receive a bounty award according to the program descriptions.
Click here to submit a security vulnerability.
Otonomo’s Bug Bounty Programs are subject to the legal terms and conditions outlined here.
