<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=YOUR_ID&amp;fmt=gif">

Security, Privacy, and Compliance You Can Verify

VIDIZMO runs one Information Security and Product Security program across its entire platform. The job is straightforward: protect customer data, keep the service available, and keep it accurate.

Certifications, Standards, and Compliance

Certifications

Standards

Compliance

The VIDIZMO Trust Program

Data Protection & Encryption

  • AES-256 encryption at rest
  • TLS 1.2 minimum in transit (TLS 1.3 supported)
  • Separate encryption keys per tenant, managed in Azure Key Vault and rotated biennially
  • FIPS-compliant, NIST-recommended cryptography

Incident Response & Vulnerability Management

  • Weekly automated vulnerability scans across apps, APIs, and cloud resources
  • Quarterly independent penetration testing with retesting
  • Security patches applied within 5 business days of vendor release
  • Breach notification within 2 business days of confirmation

Data Residency & Deployment Options

  • SaaS (shared or dedicated), on-premises, private cloud, hybrid, bring-your-own-cloud, and fully air-gapped deployment models
  • Data residency options include U.S.-based data centers, Canadian data centers (dedicated SaaS), and the Europe region
  • Customer-chosen geographic region available for dedicated SaaS deployments
  • Air-gapped deployments run entirely on-premises with no external network access; no data leaves the environment

Access Control & Identity

  • SSO, MFA, and role-based access control (least privilege)
  • Zero-standing-access for VIDIZMO staff: break-glass only, time-bound, fully logged
  • Tenant isolation at application, database, and storage levels
  • Zero Trust architecture with geo- and IP-based restrictions

Learn More

Responsible AI & Data Governance

  • Customer data is never used to train AI models without explicit written consent
  • Published Responsible AI Policy covering fairness, accountability, and safety
  • Model inventory (“bill of models”) available under NDA
  • NIST AI Risk Management Framework alignment

Learn More

Business Continuity & Disaster Recovery

  • Recovery Time Objective: 48 hours
  • Recovery Point Objective: 24 hours
  • Geo-redundant storage with automated cross-region failover
  • Semi-annual disaster recovery testing

Who Owns What in a SaaS Deployment

Features
Column 1
Application/platform security, secure SDLC, tenant isolation
VIDIZMO
Uptime SLA, vulnerability scanning, penetration testing
VIDIZMO
Incident response, breach notification, encryption, secure deletion
VIDIZMO
Data classification, content and metadata quality
Customer
Retention policies and legal holds
Customer
User and role administration, SSO/MFA/IdP policy
Customer
Audit log review, export and eDiscovery
Customer

Customer is the data Controller; VIDIZMO is the Processor; ProjectHost is the infrastructure sub-processor.

Need Documentation for a Security Review?

We can provide the documentation your review requires. For anything else, our security team is ready to help.
back to top