How do I convince my customers that Nuon is secure?
Last updated: February 12, 2026
QUESTION
How do I convince my customers that Nuon is secure?
ANSWER
Nuon is a platform, with configurations at the control plane and your app-level, to make it secure and trustworthy for your customers.
Secrets and sensitive values are entered by the customer and stored in AWS Secrets Manager, and never accessible by you (the vendor) and only accessed by the Nuon runner which is isolated in the customer's VPC.
Nuon actions — scripts that the runner executes in the customer VPC — are logged by Nuon, so the maintenance and break-glass IAM roles defined in the app configuration must be scoped properly to prevent accessing resources that they should not have access to.
Nuon's control plane does not have to run in Nuon's cloud. Nuon BYOC is our offering where Nuon's product deploys Nuon's control plane in the vendor's cloud account. This allows their customers to only have to trust and verify the vendor's cloud and not another cloud like Nuon.
See this docs link for more information about Nuon security & trust.
DOCS