Security you can trust
Enterprise-grade security built in, not bolted on. We take the protection of your data as seriously as you do.
ISO 27001:2022
Certified ISMS
GDPR Compliant
EU data protection
EU Hosted
Data stays in Europe
Our commitment to security
As a Finnish company, we've built Videosync with European values at its core: privacy, transparency, and trust. Security isn't a feature – it's foundational to everything we do.
Security by design
Security isn't an afterthought. It's built into our architecture, development processes, and company culture from day one.
Data minimization
We only collect and process the data necessary to deliver our service. Your data belongs to you.
Continuous monitoring
24/7 security monitoring, regular penetration testing, and proactive vulnerability management.
Transparency
Clear documentation, straightforward data processing agreements, and honest communication about our practices.
Technical security measures
The details your security team needs to know.
Compliance & certifications
GDPR
Full compliance with EU General Data Protection Regulation. Data Processing Agreements available.
ISO 27001
Certified Information Security Management System, independently audited.
WCAG 2.1
Accessibility standards compliance for inclusive virtual events.
Made in Finland, hosted in Europe
Videosync is developed by a Finnish company (part of Inderes Oyj, listed on Nasdaq Helsinki). All data processing happens within the European Union, and we're subject to EU data protection laws. No data leaves Europe.
Finland
Company headquarters
EU Only
Data processing
GDPR
Full compliance
Security questions
Common questions from IT and security teams.
Where is my data stored?
All data is stored in EU-based data centers (primarily Finland and Germany). We do not transfer personal data outside the European Economic Area without appropriate safeguards.
Can you sign our DPA?
Yes. We provide a standard Data Processing Agreement that meets GDPR requirements. We can also review and sign your organization's DPA if required.
Do you support SSO?
Yes. We support SAML 2.0 and OpenID Connect for single sign-on integration with your identity provider (Azure AD, Okta, Google Workspace, etc.).
How do you handle security incidents?
We have documented incident response procedures. In the event of a security incident affecting your data, we will notify you within 24 hours and provide regular updates until resolution.
Can we get your security documentation?
Yes. We can provide our ISO 27001 certificate, SOC 2 Type II report, penetration test summaries, and completed security questionnaires (CAIQ, SIG Lite) under NDA.
Do you conduct penetration testing?
Yes. We engage independent third-party security firms for annual penetration testing. We also run continuous automated vulnerability scanning.
Need security documentation?
We're happy to provide ISO 27001 certificates, penetration test summaries, completed security questionnaires, and Data Processing Agreements.