Figma Security
Peace of mind by design

Trust Figma to keep your data secure with enterprise-grade security features, compliance audits, and privacy protections.

Secure from day one

Protecting your work and information is our highest priority. Here are some of the measures we take to ensure Figma is secure for you and your team.

Data protection

To keep all your work secure, Figma encrypts data at rest and in transit. While our services are hosted in US-based AWS facilities, servers live within Figma's own VPCs to prevent unauthorized network requests.

Identity management

Easily manage access with any identity provider that supports SAML and SCIM, including Azure AD, Okta, OneLogin, and more. And use SAML SSO, 2FA, and domain capture to securely deploy Figma across your entire organization.

Service reliability

To keep you up and running 24/7/365, Figma's infrastructure is backed by three data centers to protect service availability. You'll also have peace of mind with real-time status updates and Figma's built-in version history.

A high bar for privacy and security

Our security measures exceed industry standards for data protection and security.

SOC 2 Type 2

Trust Services Principles

Contact Sales

SOC 3

Service Organization Controls

View report

GDPR and CCPA

General Data Protection Regulation and California Consumer Privacy Act compliant

Your data belongs to you

Figma is committed to keeping your information secure and private. You own the content you create and we take the responsibility of protecting it seriously.

Your privacy rights are important to us. Figma is dedicated to ensuring that all customer and employee personal data is treated in accordance with the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

We’ve detailed what data we collect, how we collect it, what we do with it, and how you can opt-out in our Privacy Policy.