simpleshow information security and data protection
simpleshow is trusted by the largest companies worldwide. Therefore, the security and privacy of your data are our priority. Our systems and processes are information security certified, managed by experts, and comply with the highest standards of access security, data privacy, and data protection.
SOC 2
SOC 2, which stands for Service Organization Control 2, is a set of guidelines and standards developed by the American Institute of Certified Public Accountants (AICPA) to evaluate the effectiveness of a company’s information security and data privacy practices. simpleshow has successfully completed the SOC 2 assessment, which means we have passed a rigorous examination of security controls, demonstrating a commitment to protecting customer data and ensuring reliable services. Click the Confirmation of Audit Letter from A-LIGN, an independent CPA firm and trusted third-party assessor, to see the results of the examination. Click here to request access to the SOC 2 report.
TISAX
TISAX (Trusted Information Security Assessment Exchange) is a mechanism for assessing and exchanging test results regarding the secure processing of information and data protection in accordance with the General Data Protection Regulation (GDPR). It was developed in the ENX Association and published by the German Association of the Automotive Industry (VDA). First published in 2017, TISAX was derived from the ISO/IEC 27001 standard. simpleshow complies with the TISAX security standards and fulfills all the requirements in all dimensions. Tisax members can receive a copy of simpleshow’s audit reports on the ENX website.
Hosting and infrastructure
simpleshow’s explainer video platform is a software-as-a-service (SaaS). It is accessible through your web browser. Our platform is hosted in a virtual private cloud (VPC) in the world’s leading cloud solution of Amazon Web Services (AWS).
AWS supports more security standards and compliance certifications than any other offering, including PCI-DSS, HIPAA/HITECH, FedRAMP, GDPR, FIPS 140-2, and NIST 800-171, helping satisfy compliance requirements for virtually every regulatory agency around the globe.
AWS supports more security standards and compliance certifications than any other offering, including PCI-DSS, HIPAA/HITECH, FedRAMP, GDPR, FIPS 140-2, and NIST 800-171, helping satisfy compliance requirements for virtually every regulatory agency around the globe.
Operations management
Our operations partner WIIT AG has a proven track record of successfully and securely managing AWS-hosted applications. Being a certified AWS Reseller and Consulting Partner, the company is also ISO/IEC 27001 certified.
With this setup, we allow for 24/7 monitoring of security-related events by dedicated teams, ultra-fast incident management, and guaranteed high performance and reliability. Access to the development and productive environments is granted only to authorized operations personnel with strict access control.
With this setup, we allow for 24/7 monitoring of security-related events by dedicated teams, ultra-fast incident management, and guaranteed high performance and reliability. Access to the development and productive environments is granted only to authorized operations personnel with strict access control.
Penetration tests
simpleshow’s applications and IT infrastructure are regularly tested by authorized third-party experts that perform simulated attacks to evaluate the system’s security. Identified vulnerabilities are fixed with a top priority.
European union general data protection regulation (GDPR)
The General Data Protection Regulation (GDPR) regulates data protection and privacy for the collection and processing of personal information from individuals who live in the European Union. Simpleshow has designed its user processes and data management to fully comply with its principles and guidelines.
Enterprise single sign-on
simpleshow supports Single Sing-On (SSO) using your Microsoft, Google, and Facebook accounts for a high level of access convenience, and online security.
For our Enterprise clients, we offer the integration of their IDP to make use of single sign-on with your corporate authentication. Using single sign-on, the principles of your password protection and access control mechanisms are therefore applicable to the simpleshow platform. Kindly contact us, if you have any questions or are interested in using Enterprise SSO with the simpleshow platform.
For our Enterprise clients, we offer the integration of their IDP to make use of single sign-on with your corporate authentication. Using single sign-on, the principles of your password protection and access control mechanisms are therefore applicable to the simpleshow platform. Kindly contact us, if you have any questions or are interested in using Enterprise SSO with the simpleshow platform.