Data security and privacy in ATLAS.ti
Key takeaways
- ATLAS.ti takes data security and privacy seriously across Windows, Mac, and Web.
- ATLAS.ti Desktop stores project data locally by default.
- ATLAS.ti Web stores data securely in the European Union using industry-standard security measures and encryption.
- ATLAS.ti complies with major privacy frameworks and regulations, including GDPR, CCPA, HIPAA, and LGPD.
- You retain ownership of your research data at all times.
Who this article is for
This article is for researchers, universities, organizations, and individual users who want to understand how ATLAS.ti protects their data and supports privacy compliance.
Our approach to security and privacy
ATLAS.ti is used by leading universities, research institutions, government organizations, and companies around the world to analyze sensitive qualitative data.
Because our customers often work with confidential interviews, healthcare data, educational research, customer feedback, and other sensitive information, we have implemented comprehensive information security and data protection measures designed to safeguard customer data and support compliance with relevant privacy regulations.
ATLAS.ti maintains security and privacy programs that support compliance with GDPR, CCPA, HIPAA, LGPD, and other applicable privacy requirements.
ATLAS.ti Windows and Mac
By default, ATLAS.ti Desktop stores project data locally on your computer in the ATLAS.ti library. Your projects are NOT automatically stored on ATLAS.ti servers.
This gives researchers and organizations full control over where their project data is stored and who has access to it.
We recommend keeping the ATLAS.ti library on a local drive and avoiding cloud-synchronized folders such as Dropbox, OneDrive, or iCloud. For both technical and security reasons, storing active ATLAS.ti libraries in cloud-sync folders can create risks for project integrity.
Beginning with ATLAS.ti version 23, users can optionally upload projects to the ATLAS.ti Project Cloud to work across multiple devices and collaborate with other project members.
Projects stored in the ATLAS.ti Project Cloud are accessible only to the project owner and users explicitly invited to the project.
ATLAS.ti Web
ATLAS.ti Web is designed with security and privacy as core principles.
Customer accounts are protected through secure authentication systems designed to prevent unauthorized access and common attack methods such as brute-force attempts and cross-site request forgery (CSRF).
Customer data remains private. ATLAS.ti employees do not access customer data unless explicit permission is provided as part of a support request.
Hosting and infrastructure
ATLAS.ti Web is hosted using Amazon Web Services (AWS) infrastructure located in Germany.
Project data is stored and managed using enterprise-grade infrastructure and security controls designed to meet international security standards. Data is protected through encryption, controlled access procedures, monitoring, and industry-standard operational safeguards.
Your data remains yours
You retain ownership of all research data processed in ATLAS.ti. We do not disclose customer data to third parties or access project content without authorization. Your projects remain under your control, and access can be managed through your account and project-sharing settings.
Compliance and legal documentation
Detailed information about our privacy practices, legal policies, and compliance documentation can be found in the ATLAS.ti Legal Center: https://atlasti.com/legal
Additional resources include:
- Privacy Policy: https://atlasti.com/privacy/
- GDPR White Paper: https://atlasti.com/legal/atlas-ti-web-white-paper-gdpr
- Accessibility and VPAT Documentation: https://atlasti.com/legal/atlas-ti-accessibility-and-vpat
- HECVAT Assessment: https://trust.lumivero.com/documents/39
Common questions
- Does ATLAS.ti store my Desktop projects on your servers?
- No. By default, ATLAS.ti Windows and Mac store project data locally in the ATLAS.ti library on your computer. Only projects that you intentionally upload to ATLAS.ti Cloud are stored on ATLAS.ti-managed infrastructure.
- Can ATLAS.ti employees access my data?
- No. Customer data is only accessed when explicit permission is provided as part of a support request.
- Is ATLAS.ti Web GDPR compliant?
- Yes. ATLAS.ti maintains measures designed to support GDPR compliance and processes ATLAS.ti Web project data within the European Union.
- Who owns my data?
- You do. All project content remains your property.
When to contact support
Contact support if:
- you require security or compliance documentation
- your institution needs information for procurement or vendor assessments
- you have questions about data residency or privacy requirements
- you need assistance configuring secure collaboration workflows