GitLab Dedicated Security Certifications, Attestations, and Initiatives


The Security Compliance (Dedicated Markets) team supports GitLab Dedicated, US public sector, and other regulated verticals. We are responsible for planning, obtaining, and maintaining industry-recognized security certifications for GitLab Dedicated SaaS offerings and self-managed GitLab to ensure customer trust. The benefits from these activities include:

For customers:

  • increases visibility and confidence in our information security program and the Dedicated SaaS platform
  • increases ease in onboarding and managing GitLab as a vendor

For GitLab:

  • ensures we are meeting all requirements of a strong and comprehensive information security program aligned with industry best practices
  • enables our field teams to quickly share the state of our security program with potential and existing customers
  • reduces the need for GitLab’s security team to fill out individual customer security questionnaires or assessments


Generally, the scope of the items listed on this page include GitLab Dedicated, the GitLab Dedicated production environment, and global policies and procedures relied upon for control implementation.

Are you looking for security certifications/attestations for Please look here.


Planned (Roadmap)

The following security certifications and attestations are currently on our roadmap for consideration and have not yet been formally committed or contracted:

Year(s): FY24

Year(s): FY25

Under Consideration:

More information

Please see our Trust Center for more information. Current or Prospective customers may request related artifacts through their Account Manager, or by using the Request by Email option on the Customer Assurance Package webpage.

Return to Security Assurance

Last modified September 6, 2023: Replace taps with spaces (69f17a79)