For BIM Managers

Security at Guardian

Guardian helps firms improve model quality, build consistency, and prevent rework while protecting client data.

Contact sales
Header image

Trusted by 360+ Firms in Over 20 Countries

These firms and more rely on Guardian for Revit to reach their full BIM management potential.

Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Company logo
Security

Our Approach to Security

Guardian is built to help firms manage Revit standards and workflows at scale — and that includes protecting the data customers trust us with.

Data Protection

Client data is encrypted in transit with the use of TLS 1.2 and at rest by AES-256 to help protect information during transmission and storage within Guardian’s cloud environment.

Access Controls

Guardian supports role-based access with company and project admin permissions. Admin controls are restricted by role, and multi-factor authentication (MFA) is supported to help strengthen account security.

Infrastructure & Security

Guardian uses trusted third-party service providers, including Microsoft Azure and Backendless, to support core platform operations. Access to client data is restricted to authorized employees.
Privacy

Data Handling and Privacy

Guardian processes client data needed to deliver platform functionality, reporting, and support. We are committed to handling that data responsibly and transparently.

Client data is used only to provide and support Guardian services.

We never sell client data.

Access to client data is limited based on role and business need.

Frequently Asked Security Questions

Here are answers to commonly asked questions about real-time user training.

Is Guardian ISO 27001 certified?
Guardian is currently in the process of obtaining ISO 27001 certification. We're continuing to invest in formal security controls and operational processes to support enterprise security requirements.
What model information is uploaded to the cloud?
Guardian uploads operational and usage data required to deliver product functionality, reporting, and performance insights. This may include information such as file names, file paths, model performance metrics, and user activity data related to how Revit is being used.

Examples include metrics like time to open, time to sync, and which Revit commands are used.
Are there settings specific to secure projects?
Yes, project settings can be customized and automated based on conditions like file location, file name, and other model attributes. For secure projects, most firms disable Guardian's optional screenshot functionality. Firms have complete control over which projects are registered to Guardian.
Do you have a Data Processing Addendum (DPA)?
Yes, we provide a standard DPA. View the DPA here.
Where does the data reside?
All client data currently resides in US-based Azure servers. Data is replicated to regional Azure data centers based on client location. Learn more about Azure data center security.
How is Guardian deployed and managed by IT?
Guardian is typically deployed by IT teams using standard enterprise software deployment methods. Most organizations first distribute the Guardian security certificate through Group Policy, then deploy the Guardian MSI using endpoint management tools such as Microsoft Intune or similar software deployment platforms.End users are not required to log in to Guardian. Instead, Guardian identifies users by capturing their Revit ID via the Revit API.
Is project data anonymized?
Not at this time. Guardian processes identifiable operational and usage data where needed to support product functionality, reporting, and administrative visibility. This enables client-specific insights such as project-level performance metrics, file-level reporting, and role-based administrative visibility.

Access to administrative controls is restricted by role, with support for company administrator and project administrator permissions.

More on Guardian Security

Contact us to request additional security information or discuss your organization’s requirements.

Contact sales

*Last updated April 2026.

Guardian graphic