A new standard for trust: Inside Samsara’s secure platform

Customers don’t resist new technology, but they often approach it with caution. At two recent industry conferences, AEMP Connect and ConExpo, we heard leaders share consistent concerns around security risks, AI and data quality, and limited IT bandwidth. Leaders at organizations running large, distributed operations—from fleets and equipment networks to public sector infrastructure—are now asking a critical question: Can I trust this platform with my data, identities, and compliance posture?

Samsara is able to answer security concerns with verifiable standards, including a 99.99%+ uptime SLA, SOC 2 Type II, and ISO 27001 certifications. Because AI is core to everything we do, our security standards had to evolve to match. We've further strengthened this foundation by achieving ISO 42001—the first global standard for AI Management Systems. This independent validation confirms that we govern AI with rigorous controls for transparency, accountability, and risk management across its entire lifecycle.

Building on this leadership, we are introducing new capabilities to give IT and security teams the granular control they require. From biometric login, to expanded Activity Log and the Magic Link API, we are providing the visibility and automation needed to run secure, compliant, and AI-driven operations at scale.

Built for secure, reliable operations

True resilience isn't just a checkbox; it’s the technical foundation for reducing operational risk and meeting compliance requirements. For CIOs, CTOs, and CSOs, this means architecture engineered for uptime, verified compliance, and controlled access across the enterprise. For system administrators, it means practical tools to manage user lifecycles, permissions, and integrations with confidence. For compliance and legal leaders, it means governed data and auditable controls that stand up to review.

Samsara’s foundation rests on three concrete pillars of platform security:

• Operational resilience and reduced downtime risk: High-availability, multi-zone architecture with 99.99%+ uptime SLAs, real-time health monitoring, and NIST-aligned vulnerability management keeps mission-critical operations online and secure.

• Controlled access and reduced identity risk: Enterprise IAM with SSO (SAML / OAuth), SCIM provisioning, scoped API tokens, IP allowlisting, and integration audit logs ensure every access point is governed, traceable, and enforceable.

• Data integrity and verifiable compliance: AES-256 at rest, TLS 1.2+ in transit, governed data sharing, and comprehensive audit logs, backed by SOC 2 Type II, ISO 27001, GDPR support, and regional data residency, deliver verifiable compliance for global enterprises.

New toolkit for trust: Practical releases and status updates

For IT, security, and compliance leaders, these releases strengthen your compliance posture and improve visibility across identities, integrations, and data. For system administrators, they reduce friction and simplify day-to-day governance.

Samsara Assistant: Chat with your Activity Log for complete visibility into configuration changes

Keeping track of administrative changes — from RBAC updates to device configurations — requires fast, complete visibility across users, drivers, and devices. The Samsara Assistant transforms the Activity Log into an intelligent, searchable system of record — letting admins chat directly with their activity data to instantly answer 'who did what, when, and how' without complex filters.

Admins can see clear before-and-after details for every configuration change and use natural-language queries to quickly understand what happened. AI-powered insights surface anomalies and compliance risks—like unusual role changes or unexpected device activity—so issues are identified before they escalate.

Every result is explainable and audit-safe, ensuring teams can trust what they see. This reduces investigation time and improves audit readiness. The feature is currently in closed beta and will move to open beta at Beyond this June.

Biometrics login: Stronger authentication, less password friction

OAuth2-based authentication for the Samsara Fleet App is now in open beta, enabling biometric MFA and modern, standards-compliant login flows on mobile devices.

This update strengthens MFA enforcement for administrators and high-privilege users while reducing password fatigue and SSO friction. Mobile access now aligns with dashboard identity standards, supporting zero-trust policies without adding operational overhead.

Magic Link API: Secure, passwordless access for frontline teams

The Magic Link API is now generally available, enabling passwordless login to the Samsara Driver App through secure, single-use, time-bound links generated from your company’s application.

This eliminates dual credentials and login friction while maintaining revocable, auditable access controls. Automatic driver authentication also ensures immediate vehicle assignment—locking in HOS compliance and reducing fleet audit exposure. For shared-device environments, short-lived tokens ensure each session ends cleanly at logout or timeout, preventing cross-driver access and maintaining security on shared tablets.

Where to learn more

Explore our Trust Center to review certifications and security documentation, and visit the Developer Portal for guidance on secure integrations and API governance.