What are Streamlit and Streamlit Cloud?

Streamlit is an open-source framework for making secure, performant, and beautiful data apps directly in Python. It also comes with a free feature called Streamlit sharing that allows users to deploy their apps for free, so long they make their source available to the world.

For companies that want to host private apps, we offer Streamlit Cloud - a platform that enables your employees to publish private apps securely within your company.

How does Streamlit Cloud work?

You deploy apps in Streamlit Cloud by simply going to our web UI and entering the GitHub repo and file path for the app. This deploys your app in a shared environment within our infrastructure. Yep, it's that easy!


Streamlit was developed by a team of ex-Google and Heroku engineers who have woven security through every layer of the service. We analyze each feature from a security perspective and perform post-facto security analysis and penetration testing on every piece of infrastructure we deploy. This section describes the major components of Streamlit's security model.

Code security

Your code is hosted entirely on GitHub within your private repos. Your code exists within our infrastructure inside of an isolated container. All data on disk, including your code, is encrypted at rest.

If you remove an app, the container and anything within it are removed from our platform.

Data security

Streamlit does not host any of your data. Instead, data is hosted on your existing services and databases, and the developer of each Streamlit app must explicitly access that data using the usual Python libraries. Secrets Management allows you to securely store authentication credentials and access them in your Streamlit app as environment variables.

Encryption at rest

All source code and data on the platform is encrypted at rest while stored on disk.

This also applies to anything your app may choose to write to disk.

Encryption in transit