Your data is safe with us
We are committed to protecting your information and ensuring a secure environment for your video creation needs.
ISO 27001 certified
Moovly is proud to be ISO 27001 certified, the internationally recognized standard for Information Security Management. This certification demonstrates our commitment to implementing and maintaining the highest standards of security, ensuring your data is protected at all times.
How we keep your data secure
All your data is encrypted using industry-standard protocols and hosted on a reliable, compliant cloud infrastructure. We are continuously improving our systems to protect against threats.
RISK
MANAGEMENT
SECURE
CODING
DATA
ENCRYPTION
BACKUP
ACCESS
CONTROL
PRIVACY
GDPR
SECURE
HOSTING
INCIDENT
MANAGEMENT
Built for business security needs
Moovly’s platform meets the security requirements of global corporations, making it easy for your organization to adopt video creation without compromising on compliance.
Key benefits:
- Meets corporate SaaS security prerequisites
- Ensures GDPR and data privacy compliance
- Offers tailored solutions for enterprise clients
Security and Data Privacy FAQs
What is Moovly’s commitment to data privacy?
Moovly prioritizes user control over their data and implements stringent security measures to uphold the highest standards of data protection. Moovly’s security framework is validated by its ISO 27001 certification, ensuring continuous focus on compliance and risk mitigation.
Is Moovly GDPR compliant?
Moovly adheres to the General Data Protection Regulation (GDPR). Moovly ensures that personal data is collected only with informed consent, safeguarded appropriately, and handled in compliance with relevant privacy laws. If required, Moovly is available to sign a Data Privacy Agreement (DPA) with customers.
Where is Moovly’s data hosted?
Moovly’s platform is hosted on Amazon Web Services (AWS), a highly secure cloud provider with industry-recognized certifications, including PCI DSS Level 1 and SOC 2.
Is client data encrypted at rest and in transit?
Yes, Moovly ensures robust encryption for all client data. Data at rest is encrypted using AES-256, the industry standard. Additionally, data transmitted between users and Moovly’s servers is secured using HTTPS (SSL/TLS) encryption.
How does Moovly handle payment information?
Moovly does not collect, store, or process payment card information. Instead, Moovly relies on PCI DSS Level 1-compliant third-party service providers to handle all payment processing and subscriptions, ensuring the highest level of payment security.
Does Moovly perform security testing and monitoring?
Yes, Moovly conducts regular automated and manual vulnerability assessments, both internally and through independent third-party security firms. Moovly also maintains 24/7 monitoring of security-related events and employs proactive alerting controls, all in line with ISO 27001 security standards.
How does Moovly manage third-party vendor security?
Moovly has a strict vendor security assessment workflow. Before engaging with a third-party provider, Moovly’s security team conducts a thorough security review. Moovly also performs ongoing evaluations to ensure continued compliance with our security standards and service agreements, in line with Moovly’s ISO 27001-certified security practices.
What measures are in place for application security?
Moovly applies a Secure Coding Policy to ensure that all software developed or procured within Moovly is secure, free from vulnerabilities, and meets the requirements of its Information Security Management System (ISMS). This policy is designed to mitigate risks associated with software development, reduce exposure to security threats, and ensure the confidentiality, integrity and availability of organizational data.
What access control measures does Moovly implement?
As part of its ISMS (Information Security Management System), Moovly applies a robust Identity and Access Management Policy for managing user identities, system access and the protection of sensitive information within its organization. This policy ensures that only authorized individuals have appropriate access to Moovly’s systems, applications, and data based on their roles and responsibilities. Administrative access to Moovly’s production environment is strictly controlled and limited to authorized staff members only. This policy is in line with ISO 27001 security requirements.
Does Moovly offer Single Sign-On (SSO) options?
Yes, Moovly provides SSO integration for enterprise clients, enabling seamless and secure authentication using corporate login credentials. For businesses without SSO, Moovly offers robust password management features, including two-factor authentication options.
How does Moovly support large corporate users?
Moovly’s platform is built to meet the security and IT requirements of enterprise clients. Our platform offers over 99.9% uptime, priority video rendering, and secure, collaborative workspaces for teams. Enterprise administrators have full control over user management, licensing and workspace organization and have access to usage analytics. Moovly has implemented an Information Security Management System (ISMS) that is compliant with ISO/IEC 27001:2022, the international standard for information security.