Data Protection

To prevent your data, such as code and function metadata, from being obtained by unauthorized or unauthenticated entities or individuals, FunctionGraph encrypts the data for transmission.

Data Protection Technologies

Table 1 lists the data protection technologies used in FunctionGraph.

**Table 1** Data protection technologies
Technology	Description
Encrypted transmission	All API requests and internal communications are encrypted using TLS 1.2 or later.
Encrypted storage	Function sensitive information and user code cache are encrypted with AES and decrypted when used.
Others	When you create a function or dependency, your code is stored in a private OBS bucket. You can configure an ACL for each object to ensure that only the specified tenant can read and write the object, isolating access from other tenants. When you create a function using a custom image, the image is stored in your own SWR. Only your own account can download the image. Function instances are isolated at the function level, with different functions using separate instances to ensure strict data isolation. After you stop invoking a function, the backend recycles the function instance after a specified time to prevent data leakage from instance reuse.