Secure by design
What is Warp?
Warp is a cloud-enabled, AI-assisted terminal application for developers that enables teams to share knowledge and collaborate asynchronously or in real-time alongside the command line.
AI and Cloud-enabled features
Warp’s cloud-enabled features include:
- Warp Drive
- Warp AI
- Block Sharing and Embedding
For Warp Drive and block sharing and embedding, all data is securely stored in Google Cloud Platform (GCP). For more information about GCP security, please reference: https://cloud.google.com/security
For Warp AI, all data is sent through a proxy to OpenAI or Anthropic using the enterprise-level APIs. Data is encrypted in transit and never used to train models for OpenAI, Anthropic, or Warp. OpenAI and Anthropic store this data for a maximum of 30 days.
For organizations that need to ensure OpenAI and Anthropic never store data for any period of time, a Zero Data Retention policy is available on Warp's Enterprise plan.
You can read more about OpenAI’s API data policies on their website: https://openai.com/enterprise-privacy
You can read more about Anthropic’s API data policies on their website: https://privacy.anthropic.com/en/articles/10023555-how-do-you-use-personal-data-in-model-training
You can also open Warp’s network log to review all data sent and received: https://docs.warp.dev/features/network-log
Privacy Settings and Telemetry
Where can I find a link to Warp’s Privacy notice?
Warp’s privacy policy is available on Warp’s website at: https://www.warp.dev/privacy-policy
Does Warp provide privacy settings for users?
For organizations using Warp’s enterprise plan, additional controls may be available to:
- Enforce enabling or disabling telemetry
- Enforce enabling or disabling Warp AI
- Enforce enabling or disabling secret redaction
If your organization has additional security requirements, Warp may work with you to administer controls upon request. You can contact your Dedicated Account Manager or [email protected] for more information.
When telemetry is enabled, what data does Warp collect?
Warp never collects input or output data from the terminal console. Users may opt out of telemetry at anytime.
Warp’s telemetry includes both high-level application analytics and crash reporting. Users may choose to disable either type of telemetry at any time.
Crash reports help the Warp team debug stability issues. App analytics include only high-level usage data to help the Warp team understand which features are utilized by users, to inform the product road map and improve the user experience.
You can find a full, updated list of all the features Warp’s product team tracks with app analytics in the Warp Docs: https://docs.warp.dev/getting-started/privacy#what-telemetry-data-does-warp-collect-and-why
Data
Where does Warp store user or company data?
Any data supplied to Warp by users or companies is stored on Google Cloud Platform. Database locations are in the United States.
For more information about GCP security, please reference: https://cloud.google.com/security
Who owns Warp user or company data?
You own your data that is securely stored on Google Cloud Platform servers by Warp. You may delete your data at any time. Data provided to Warp is never sold to third parties. Reference Warp’s privacy policy: https://www.warp.dev/privacy/policy
How is data encrypted at rest and in transit?
All data is encrypted at rest with AES 256 or higher. All data is encrypted in transit with TLS 1.3.
Authentication
What user authentication methods does the Warp product support?
Warp supports authentication with a username and password or single sign-on (SSO) through Google or GitHub.
What authentication controls are available for teams or organizations?
For teams on Warp’s enterprise plan, additional authentication controls may be available. For example, you may enforce single sign-on through a provider such as Okta or enforce domain verification for all members of a team. You can contact your Dedicated Account Manager or [email protected] for more information.
Permanent Contact Information
Are there permanent email addresses we can contact for security or contracts?
Yes, you may contact Warp at [email protected] for security questions or [email protected] for questions about contracts.
Where is Warp’s permanent company headquarters?
740 Broadway Suite 802 New York, NY 10003
Compliance
Does Warp have a SOC 2 Type 2 attestation?
Yes, Warp has obtained a SOC 2 Type 2 attestation from an accredited third party. Visit Warp’s Trust Center to request the report.