KNIME logo
Contact usDownload
KNIME logo

KNIME Trust Center

Angle PatternAngle PatternPanel BGPanel BG

At KNIME, we develop software to the highest standards of privacy and security that organizations can trust. As an organization, we are aware of our responsibilities to the community, particularly around good governance, social responsibility and the environment.   

KNIME Software is comprised of KNIME Analytics Platform and KNIME Business Hub. The software is generally installed on an organization’s choice of infrastructure, whether local, cloud or hybrid. This means the software had built-in capabilities designed to leverage an organization’s existing policies and approaches whenever possible.

KNIME also provides KNIME Community Teams, KNIME Software as a service (SAAS) for small teams. If you are planning to use the software this way, please refer here for detailed information.

Each topic in this document covers KNIME (the company) and KNIME Software being used by an organization on its choice of infrastructure.

KNIME Trust Center

Security

KNIME

We are committed to providing safe and secure software. We do this by following industry standards for running an organization (demonstrated by our ISO 27001 certification, available on request here) as well as documenting our Secure Software Development Framework, available here.

Key aspects of the software development Framework include:

  • Security by design: Every piece of our software undergoes a security review already at the design stage. We check for potential threats and address them when writing requirements for the implementation.
  • Static and dynamic code analysis: The code that KNIME developers create is automatically processed by static and dynamic application security tools. This means most security issues don’t even make it into our code base in the first place.
  • Regular penetration tests: Our software undergoes regular penetration tests by an external company. Found issues are addressed immediately. Note that complete penetration testing should be done by each organization on their choice of infrastructure.
  • Vulnerability management: We actively monitor all external code which we integrate in our software for security vulnerabilities. All issues affecting our products are addressed as soon as possible and customers are proactively informed about issues and how to remediate them.
  • Monitoring and Incident Response: We continuously monitor our systems for security threats and have established protocols to respond swiftly in the event of a potential security incident.

For more information on our security practices, please refer to our Security Overview.

KNIME Software

The software includes comprehensive security capabilities that are highly adaptable to ensure enterprises can implement and test their own security compliance on their usage of KNIME Software. This includes such topics as User and Asset Management, Data Transfer, controlled deployment and extensive monitoring and logging capabilities of all aspects around the running of the software. Extensive examples, best practices and documentation are available.

All these measures and established processes ensure that your data and systems are as safe as possible.

Privacy

KNIME

KNIME does not process your data. The data you process is done via KNIME Software on your chosen infrastructure, and you are in complete control.

The company collects only the data necessary for providing and improving its services, adhering to global privacy regulations like GDPR and CCPA. Users that interact with us have control over their data, with options to access, update, or delete personal information at any time.

For more detailed information, please see our Privacy Policy.

KNIME Software

KNIME Software contains capabilities to manage and govern policies around data protection.  Capabilities including anonymizing data when required and documenting usage according to standards such as GDPR. 

Responsible Use of AI

KNIME

Responsible AI is built into our approach to software development, ensuring the capabilities we provide as a part of the software enable organizations to have transparency, replicability, and, to the extent possible with AI, explainability. 

K-AI, our internal AI engine within the software, is a capability that must be installed and turned on by the user or organization.

KNIME Software

The intuitive, self-documenting nature of the workflow brings transparency to the process of working with AI or integrating LLMs into analytics. KNIME Business Hub comes with a suite of governance features and safeguarding mechanisms to enable teams to control access to AI technology, data sent to models, output and quality of models and adherence to regulatory compliance. KNIME provides businesses with a flexible framework that can be as rigid as their internal policies demand.

Compliance & Governance

KNIME

At KNIME, we comply with all applicable local, national, and international laws and regulations relevant to our operations, including labor laws, environmental regulations, anti-corruption legislation, and data protection requirements. Compliance with these legal frameworks is a cornerstone of our business integrity.

We expect our partners to fully comply with all applicable laws and regulations in their respective operations. Partners must ensure that their business activities are conducted in full legal compliance, and they should establish robust mechanisms to monitor and uphold regulatory adherence.

KNIME Software

KNIME Software is a highly flexible, customizable and transparent software that can be used to adhere to strict compliance standards of any organization. Trusted by companies in Financial Institutions, the Public Sector, NGOs and other strictly regulated fields.

The following aspects of KNIME Software allow enterprises to ensure compliance across even the most strictly regulated field:

  • Transparency & Auditability: Visual workflows document every step of the data science process, making it easier to explain and audit workflows.      
  • Reproducibility & Traceability: Full backward compatibility ensures reproducibility of workflows. Workflow versioning allows users to revert and audit past analyses.         
  • Data Governance: KNIME provides an integrated platform for data access, validation, and integration. Credential encryption, team credential management, and data anonymization features ensure security and privacy compliance.
  • Consistency & Stability: Integrated deployment capabilities streamline model development to production, ensuring consistency and compliance with governance frameworks.
  • Customization & Extensibility: Theopen-source nature of the platform supports complete customization, as well as the development of custom extensions and integration with third-party tools, allowing adaptability to evolving regulatory requirements.

Environmental Responsibility

KNIME

We understand that running a business has an impact on the environment, and we are committed to minimizing it. We’re constantly working on new ways to reduce our carbon footprint through initiatives like:

  1. CO2 Reduction
  2. Green Office Practices
  3. Sustainable Energy Use
  4. Managing Environmental Risks
  5. Tracking Environmental Progress
  6. Biodiversity
ecovadis badge



We are honored to have earned the COMMITTED sustainability rating from Ecovadis.

KNIME Software

For all aspects of tracking our environmental progress, we use KNIME Software. A detailed description as well as examples that an organization can use themselves are available here.

Contact Us

For any questions or concerns regarding privacy, security, compliance, or other aspects of our platform, please do not hesitate to reach out to us. Our team is available to provide assistance and further information.

You can contact us through our Contact Page.

At KNIME, we prioritize trust through responsible data practices, transparency, and adherence to the highest security and privacy standards.