How regulated companies can engage and train better | REGISTER NOW

Vyond Security and Data Privacy

Vyond is the only agile video creation studio that supports the rigorous security requirements of enterprise organizations. Vyond is ISO 27001 certified (for all locations and use cases), GDPR and CCPA compliant, as well as Data Privacy Framework certified. Vyond Secure Suite (a component of our Vyond for Enterprise solution) provides oft-requested features such as SSO, customizable password complexity, brute-force login protection and IP whitelisting. Advanced options such as data partitioning (which prevents commingling of data) are available as well.

Vyond Video Animation Tool - GDPR badge
Vyond video animation tool - ISO 27001 certification badge
Vyond video animation tool - CCPA badge

Trusted by 65% of the Fortune 500.

“I’ve been using Vyond for about two years now. I researched half a dozen companies out there, tested several, and found that Vyond was by far the easiest to use in the shortest period of time. We use Vyond to create everything from communications videos to kick off new programs to videos that support our recruiting efforts.”

If you ask an agency to produce a video for you, it could cost a fortune. By creating our own animated videos, we can prepare high-quality videos without any extra spend. The biggest reason I’d recommend Vyond is its user-friendliness. It’s so easy to use and so flexible. And if you can’t find the image you want, you can upload it. What is very important is that the company itself is flexible as well. They listen to people, and the responsiveness of their customer care is outstanding.

“I’ve tried a ton of animated video makers and nothing compares to the quality of the assets (characters, props, templates, etc.) in Vyond. Plus, it’s incredibly easy to use and the interface is very intuitive and fast, especially now with the new Vyond Studio.”
Keith Anderson Director of Learning, Sears Home Services
Nora Salamon-Toth Instructional Designer, Roche Services Ltd.
Megan Creegan eLearning Developer, Equity Residential

ISO/IEC 27001 Certification

One of the most widely accepted and recognized international standards for information security management, the ISO/IEC 27001 standard certifies that Vyond has the requisite information security controls in place to protect client data. The certification process includes a rigorous audit of Vyond’s information security management systems and controls and is awarded only to those companies that can meet the standard as judged by an independent, accredited team of auditors.

European Union General Data Protection Regulation (GDPR)

The General Data Protection Regulation (GDPR) is a comprehensive regulation focused on the protection and free movement of individuals’ personal data. It requires companies handling such data to obtain informed consent before collecting it, to safeguard this information, and to ensure that any companies they share this information with follow the same standards. Companies must also be able to report on what personal data they have obtained and to return or destroy an individual’s information upon request. GoAnimate Inc., the company that operates Vyond, is compliant with the GDPR.

CCPA Compliance

Vyond has taken steps to ensure its processing of personal information is consistent with the requirements of CCPA.

Hosting and Infrastructure

Vyond’s Software-as-a-Service (SaaS) solution is hosted on top-tier secure cloud services provided by Amazon Web Services (AWS). AWS is a secure, durable technology platform with industry-recognized certifications and audits: PCI DSS Level 1, FISMA Moderate, FedRAMP, HIPAA, and SOC 1 (formerly referred to as SAS 70 and/or SSAE 16) and SOC 2 audit reports.

Your Payment Information Is Safe with Us

Vyond does not collect, accept, handle, process, receive, transmit, or store your payment card information electronically at all, and we solely utilize PCIDSS Level 1-compliant service providers for handling payment processing and subscriptions.

GoAnimate Inc., the company that operates Vyond, maintains a Certificate of Validation for PCIDSS for the electronic payment processing workflow. This certificate is available on request.

Penetration Tests and Monitoring

Vyond’s applications and our IT infrastructure undergo regular automated and manual vulnerability assessments by independent companies. This is done in addition to AWS’ own independent tests, periodic internal tests, and 24/7 monitoring of security-related events by dedicated teams.

The Vyond operations team maintains a monitoring dashboard and metrics associated with different service components. We also have proactive alerting controls for notification by different channels, subject to the significance of the event.

Third-party Vendor Management

Vyond maintains a comprehensive workflow on vendor security assessment and regular reviews. Prior to engaging a third-party vendor, the company’s management team and involved departments conduct a thorough review and subsequently investigate implications to information security. We closely review service agreements to ensure that potential avenues for misuse of customer information would be identified early and eliminated. Once a vendor has been selected, we conduct regular reviews on their performance and information security.

Application Security

Our team follows secure development methodologies with code reviews that incorporate automated quality assurance controls. Software components utilized in the Vyond platform undergo regular checks against published vulnerability databases to facilitate remediation planning. We also raise any security concerns during the planning and specification phase.

Access Control

Our applications are deployed on AWS Virtual Private Cloud (VPC) on segregated logical networks separate from those of other companies with a few number of defined ingress and egress points to minimize the potential attack surface and facilitate security monitoring. Administrative access to servers on the network requires going through dedicated encrypted tunnels from authorized workplace networks. Only operations personnel are authorized access to the production network. Network firewalls are on a deny-by-default configuration and specific service ports open only on a valid business need.

User accounts are created only for those with a need-to-know clearance and access granted on a least privilege basis. Upon staff departure, accounts are promptly disabled or removed.

Single Sign-On & Password Security

Using Office365 or Google Single Sign-On (SSO) with your Vyond account enables fast, easy logins, and improves online security.

For businesses with even stricter security policies, we offer locally administered SSO designed for direct integration with your corporate authentication service. For more information, contact our sales team.

For teams that don’t take advantage of either SSO option, Vyond Studio offers team administrators comprehensive password control features, including password complexity requirements, regularly enforced password changes, and disallowing the use of previously used passwords.

Data Privacy Framework

The EU-U.S. and Swiss-U.S. Data Privacy Frameworks were designed to provide guidance around data protection for companies engaging in transatlantic commerce. Similar to our commitment to GDPR, we respect your control over your own information and take the utmost care to ensure that all data we receive is subjected to the applicable principles of the Data Privacy Framework. GoAnimate Inc., the company that operates Vyond, participates in and has certified compliance with the EU-U.S. and the Swiss-U.S. Data Privacy Framework.

To learn more about the Data Privacy Framework, and to view our certification, visit the U.S. Department of Commerce’s Data Privacy Framework List at


Create Media Securely

Now that you’ve seen our standards on security, you can believe we take media production seriously. Our video platform creates high-quality, professional media — taking your stories to the next level.

Buy Now Try It Free