We take both the privacy and security of your data very seriously. Especially when it comes to video calls with partners, clients, etc. we use industry standards to keep your data safe.
eyeson is built on rock-solid encryption technologies. Meaning, all connections on our websites, services and apps are SSL/TLS encrypted (transport layer security) or in case of audio/video-streams protected by DTLS/SRTP (secure real-time protocol).
When the recording or picture snapshot feature is activated, the recorded audio/video data, snapshots and content are transferred and stored in a cloud storage location that uses server-side encryption.
Screenshots und Recordings are stored in AWS S3 Europe using Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3). Only room owner and room members have access to recordings and snapshots. Recordings and snapshots are stored until room owner or room member deletes recording or snapshot. Irrespective of this, after termination of the business relationship, all data is deleted after 6 months.
PDFs and Images shared / presented during a live meeting via the presentation feature or screen sharing are transmitted along the Audio-Video stream (encrypted DTLS/SRTP) and are NOT uploaded to any cloud storage. Of course - if the meeting is recorded - PDFs, screenshare and Images are part of the recording.
All media stream contents are hosted in data centers and cloud services (European data cloud provider Exoscale and Amazon AWS ) certified for information security management systems. On request, live video and audio processing can be customized to use different cloud hosting providers (e.g. Amazon, Azure, Alibaba, Google, Interoute) in locations in- or outside the EU. Amazon AWS is used in Europe by default and committed to offering services and resources to HIPAA and GDPR compliance.
Live video meetings with video & audio streaming are processed and routed in the cloud server location of the license agreement. As eyeson saves bandwidth by using its unique single-stream technology, media streams are encrypted end-to-server-to-end. Whereas the server is a single instance for every meeting on its own, and as previously described, can be hosted on AWS or any other common cloud provider on demand.
The server-side meeting control interface is hosted on AWS cloud, therefore all control actions like starting/stopping a recording, muting all participants, as well as chat message broadcasting happen there. In presentation mode, PDF documents and images shared are processed client-side only and are not uploaded to any cloud storage provider. Recordings and snapshots are stored on the default cloud storage provider AWS.
Video meetings can be accessed either with a regular eyeson account or via a guest link using an anonymous or provided name. The video meeting cloud resources are initiated and used on the cloud location. During this time, clients are connected to the video meeting and are shut down as soon as we ensure everyone has disconnected and did not try to reconnect. The cloud server location is hosted under the terms and conditions of the cloud provider.
When you use eyeson's Facebook & YouTube live streaming features, you need to connect with your own Google or Facebook account to keep the transmitted data in your own hands and take care of your privacy on these 3rd party platforms. In addition, you can only use the live streaming features to 3rd party platforms responsible and do live streaming if all participants agree to do so.
Our services use an eyeson centralized logging system, self-hosted error monitoring and on some services, we integrate a third-party error monitoring service Bugsnag to ensure a stable and fast platform. Reports contain timestamps and may also contain IP-addresses. These logging systems allow us to monitor the platform, further develop the services and early detect potential attacks on our services.
If you require further information, please feel free to contact us - we are here to help!