Security at Spline

Spline is built with best-in-class security practices at every layer. This includes state-of-the-art encryption, safe and reliable infrastructure, and independently verified security controls.

Security Pillars

Learn about the measures we take to ensure Spline is secure.

Identity Management

Every creator is asked to verify their email address during signup or login using a Time-based One-Time Password (TOTP) system.

Additionally, we offer Enterprises the ability to enable SSO and 2FA to securely utilize Spline across your entire organization.

Data Protection

Spline implements robust security measures to safeguard your work. All data, whether stored or transmitted, undergoes encryption to ensure confidentiality and integrity.

We use Amazon Web Services (AWS) in the United States, and provide an additional layer of protection by ensuring multi-region backup.

Application Reliability

We commit to 99% uptime of our application services and hosting services for your 3D scenes. In real-time, you can check our Application Status Page here.

In the event of any scheduled maintenance, we commit to giving our creator base advanced notice in order to best prepare.



SOC 2 is the leading security compliance standard for software companies in the United States. Spline is certified Type 1, and we expect compliance for Type 2 certification to be ready later this year.


Please find our Privacy Policy here, as well as our Terms & Conditions.

Report an Issue

If you have noticed something within our app or website that you would like to report to our security team, please email us at to flag the potential vulnerability or issue.