The Pipe Platform Achieves Security and Compliance Milestone with SOC 2 Type I Attestation. Learn More

🔒 End To End Security

Audio & video data are always encrypted in transit and at rest from your users to our media servers and all the way to our Amazon S3 storage.

Secure Recording Client Delivery

Our recording client will be embedded in your web site or app and delivered to your users securely via https.

Secure Recording

Our recording client uses secure wss or https connections to stream or upload recordings in an encrypted manner over the public Internet.

Secure Processing

During processing we keep data encrypted at rest and move data around using secure transfers over virtual private networks.

Secure Push to Storage

The recordings are securely pushed to our EU, US & CA S3 buckets, to your website (through SFTP or FTPS), to your Amazon S3 bucket or to your Dropbox.

Secure Playback

Playback & download from our US & CA Amazon S3 storage buckets or from our EU Scaleway S3 storage bucket is done securely through HTTPS.

Authenticated Webhooks

Pipe automatically signs all webhooks so you can verify on your end that the data is coming from the Pipe Platform and not a third party.

Privacy

We provide the controls needed to minimize data collection & retention.

Do Not Collect PII Data

You have transparency over what data we touch and control over what data we collect from your users with each recording

Do Not Store Recordings & Data

Once we successfully process a recording and send the files and data we can immediately delete local files and data.

Data Lifecycle

Delete old, obsolete data - for which you are reponsible - with our data lifecycle feature.

SOC2 Type I Report

We’ve just completed our SOC 2 Type I audit for the Security TSC and are expecting our official attestation report in the coming weeks—an exciting milestone in our commitment to security and trust.

This marks a major step forward in strengthening our internal controls and safeguarding customer data.

GDPR Ready

If you’re from the EU, or you’re not from the EU, but you’re processing data of EU data subjects, you can rest assured that our platform will help you comply with GDPR requirements. We’ve gone through the compliance process several times in relation to both the data we process for you as processors (recordings, metadata, snapshots) and the data we hold as controllers.

You should check out our GDPR overview page for more information on how we can help you comply, and feel free to email us any GDPR-related questions at contact@addpipe.com.