Communications platform that puts data privacy first

Communicate with your colleagues, customers, partners, and vendors in a secure environment that ensures complete data privacy. Deploy on-premises and take full ownership of your data.

Open source chat platform trusted by 12M+ users
in over 150 countries

Rocket.Chat is ISO 27001 certified

ISO 27001 is an internationally recognized standard for information security management systems. Rocket.Chat is audited on an annual basis by an independent third-party auditor to verify the design and operational effectiveness of our security management system.

Rocket.Chat is SOC 2 compliant

Audited by Prescient Assurance, we hold SOC 2 Type I attestation report which proves to our current and future customers that we manage our data with the highest standard of security and compliance.

Rocket.Chat achieves BITV 2.0 and WCAG compliance

We are proud to be BITV 2.0 and WCAG compliant, demonstrating our commitment towards ensuring digital accessibility for all individuals, thus breaking down barriers and fostering an inclusive virtual environment.

Data protection

Safeguard your internal and external communications with the highest standards in data privacy, security, and ownership.

End-to-end encryption

With end-to-end encryption, your conversations are completely private and not accessible by other people.

Data loss prevention

Avoid data leaks, and automatically triage sensitive data fields like SSNs or credit card numbers through an approval process.

Message audit panel

Audit and export every conversation to keep tabs on the sensitive information that’s shared within and outside your organization to reduce the risk of insider threats.

Secure push notifications

Leverage ID-only push notifications to prevent Apple and Google gateways from reading your messages.

Device management

Enhance your network security by managing and controlling the devices linked to your workspace. Uncover potential security threats by monitoring the login activity and terminate suspicious sessions to block access.

Two-factor authentication

Two-factor authentication (2FA) requires users to provide two forms of authentication, making it harder for cybercriminals to gain access to sensitive information, thereby reducing the risk of security breaches.

Built for your privacy, security and compliance needs

Our software has been deployed in the most rigorous environments, supporting compliance with GDPR, HIPAA, FINRA, FedRAMP and more. Rocket.Chat is verified as secure for use under the United States Department of Defense’s Platform One DevSecOps initiative.

Access control and identity management

Configure custom roles and leverage Rocket.Chat’s vast and customizable permission system of 180+ role permissions to grant appropriate access privileges to users based on their responsibilities within the organization. Integrate single sign-on (SSO) with Google, GitHub, SAML (including Okta), AzureAD, Active Directory/LDAP and more.

Rocket.Chat on-premise

Take full ownership of your data. Leverage secure, self-managed installation in your data center with layered security options (e.g, SSL, VPN and DMZ). Rocket.Chat’s on-premise offerings can be hosted entirely behind your firewall, or even on an air-gapped network.

Rocket.Chat SaaS

Rocket.Chat’s robust and scalable cloud is built on Docker and Kubernetes and combines it with our services and innovative platform. Hosted in secure and audited data centers in multiple regions for our customers to choose from – ensuring the best performance and meeting strict data localization requirements.

Open-source software

Leverage the flexibility of our open-source software, with transparent code under constant review. Rocket.Chat’s community edition is licensed under the permissive open source license – the MIT source license.