Plecto

Security Information

General information

Security has always been the top priority for Plecto. Therefore, we have taken a number of initiatives to improve security:

  • Only the absolute required staff from Plecto has access to customer data.

  • Customer data and metadata are stored separately – this is considered best practice and the way most governments store social security numbers safely.

  • All of our databases are encrypted.

  • We run in some of the most secure data centers in the world. On June 28, 2025, we migrated to a European-based hosting provider called Scaleway (learn more). Before that, we used Amazon Web Services and their data center in Ireland.

Do not hesitate to reach out to us at support@plecto.com if you have any questions about the security of our platform.

If you want to report a security incident, please send it to security@plecto.com and encrypt it with this GPG key.

Plecto's IP address

Plecto allows fetching data through a public IP address. If you want to restrict access to our services based on IP allowlists (for firewall rules, API calls, webhooks, or SQL import), you should configure your firewall to only allow traffic from this source:

  • 51.159.130.44

On June 28-29, 2025, Plecto performed a migration to a European-based hosting provider, and therefore the IP address listed above is replacing the old Plecto IPs. The address above is replacing the old IPs used for traffic, so please make sure to update your configuration if you have not yet done so.

The following Plecto IP addresses are getting deprecated after June 28, 2025:

  • 54.76.22.100

  • 54.76.22.43

  • 52.210.249.227

IP Whitelisting →

About SQL imports

If you have an SQL import data source in Plecto, please make sure you match the following criteria:

  1. Read-only access to the tables, as you query in your SQL statement.

  2. Whitelist for our public IP address.

  3. You have limited your SQL statement to only contain the newest necessary data.

Security, Privacy, and Data Protection →