Security
Kaleyra empowers organizations to secure account data, maintain customer privacy, and deliver trusted communications through a robust combination of data protection practices, compliance-focused processes, and secure omnichannel messaging infrastructure.
Kaleyra's security framework emphasizes:
- Protection of personally identifiable information (PII)
- Protection from unauthorized / suspicious access to your account or API
- GDPR-compliant data handling practices
- Privacy-by-design architecture
- Enabling you to provide a transparent consent management
- Continuous review of operational security policies and procedures
Among the available security features, you, as the Kaleyra platform's account owner, can enable and configure the following:
IP Restriction
In addition to username and password authentication, you can configure to allow account logins for your team members only from the approved IP addresses or IP Ranges of your organization. You can update the approved IP list whenever an authorized user's IP address changes. For more information, see IP Restriction.
Two Factor Authentication
In addition to username and password authentication, you can enhance account security for both the owner and team members with an extra layer of authentication during login by means of Email or SMS OTP. For more information, see Two Factor Authentication.
IP Configuration
Additional security layer are available for API Key protection used in API call through IP Configuration. The IP configuration option lets you create a configuration with IP addresses that you can then associate with one or more API Keys in order to whitelist the configured IP addresses. For more information, see IP Configuration.

