Supporting your Product: Datto Cloud datacenter security, USA locations



This article describes Datto Cloud security and redundancy infrastructure for United States-based partners.


  • Datto Cloud: Datacenters (United States)


The Datto Cloud features uncompromising security & constant availability. Select a topic to learn more:

Secure Controls

Datto’s data centers are compliant with the Service Organization Control (SOC 1/ SSAE 16 and SOC 2) reporting standards. Renowned as the predominant credential for data centers, the criteria for SOC auditing are set forth by the American Institute of Certified Public Accountants. The operational controls and activities of Datto’s facilities are audited annually to maintain compliance.*

Secure Management

Datto’s Cloud Engineering team proactively monitors and maintains the servers of the Datto Cloud; They are on-call 24/7 for emergency support.

The Cloud Engineering team:

  • ensures the health and optimization of hardware
  • overseeing OS updates
  • conducts reactionary fixes for any security exploits either published or discovered. 


Data remains protected by AES-256 bit encryption during the entire synchronization, storage, and replication process **

Data Security

Datto Cloud Engineering’s access to node servers is granted via RSA SSH keys and two-factor authentication. Root permission is guarded by a robust 22-character minimum passcode.**

Physical Access

Physical access is guarded 24/7 by personnel, biometric scanning, and activity logging.

Remote Access

Reverse SSH connections are used by Datto when providing any remote web services.

Redundant Data Centers

Datto’s cloud is composed of nine data centers located in different countries. All US customer data first synchronizes to the primary facility in Pennsylvania. A secondary location in Utah serves as means of replication for the primary data center. All primary sites can provide users remote access to protected files and systems in the case of a disaster.

Reliable Infrastructure

The data centers themselves are TIER 3 rated according to the American National Standards Institute (ANSI/TIA-942). All infrastructure components are fully fault-tolerant, which translates to a minimum guaranteed uptime of 99.982%. This fault-tolerance is a safeguard against the failure of any given piece of equipment required for data center functionality, infrastructure redundancy, and ensures that the Datto Cloud remains intact and operational.


Utility feed, N+1 generators, and eight dual-module UPS battery systems supply Datto’s servers.


Multiple physical entry points and load balancing across three Internet Service Providers (ISP).


Industry-grade passive and active HVAC systems regulate temperature and humidity.

Fire Protection

Waterless FM200 systems use vapor to extinguish fires in 10 seconds while neither conducting electricity nor causing harm to occupants.

Additional Resources

* Datto may release SOC reports and bridge/gap letters may be released to partners upon request, but does not publish them to the web.

** Storage of data at rest with AES-256 bit encryption requires the use of Agent Level Encryption.

Was this article helpful?

4 out of 5 found this helpful

You must sign in before voting on this article.

Want to talk about it? Have a feature request?

Head on over to our Datto Community Forum or the Datto Community Online.

For more Business Management resources, see the Datto RMM Online Help and the Autotask PSA Online Help .

Still have questions? Get live help.

Datto Homepage