Security, Compliance & Trust

Examine our high-security hosting infrastructure, Docker sandbox isolation layers, token rotations, and encryption guarantees.

1. Zero-Knowledge Key Storage

We encrypt and store all credentials (like database connection strings, GITHUB_PERSONAL_ACCESS_TOKENs) with AES-256-GCM. Your keys are decrypted only in memory at runtime inside isolated container pods, preventing unauthorized disk access.

2. Isolated Docker Sandboxing

Every deployed server runs within its own secure, single-tenant container containerized layer. This completely isolates code executions, filesystem access, and system calls, guaranteeing your server cannot leak or access adjacent pods.

3. Human-in-the-Loop Permission Filters

Filter and approve write tools (such as database edits, filesystem deletions, or social posts) dynamically. Choose to receive approval notifications on Discord or Slack, giving your human operators final say before model executions.

4. Fully Audited Handshake Logs

Examine every single JSON-RPC packet transmitted between your models and your server. Audit timestamps, roundtrip latencies, command parameters, and execution outcomes live on our dashboard or stream logs to external SIEMs.

Regulatory Compliance and Standards

MCPserver.in aligns with international information protection benchmarks, offering complete compliance with localized Indian data storage requirements.

DPDP Act Compliant

Fully compliant with India's Digital Personal Data Protection (DPDP) Act rules for localized data storage.

SOC 2 Type II Ready

Rigorous quarterly external security auditing to ensure security, availability, and process integrity.

ISO 27001 Certified

Our physical hosting clusters in Bengaluru and Mumbai operate inside ISO-certified state-of-the-art facilities.