Enterprise security as standard.

CaptionHub is as committed to maintaining the confidentiality and integrity of your data as you are. Our state-of-the-art encryption and security has been designed to ensure that your data is only accessible by those you give permission to.

  • ISO 27001 certified

    CaptionHub is committed to a highly secure operating environment, information environment and platform. Security objectives have been established according to our strategic objectives - a Security Working Group chaired by our CEO oversees information risk and security management. A systematic review of internal security performance is conducted through an internal and external audit programme, and through a system of continual improvement compliant with international security standards including ISO 27001. You can download our ISO 27001 2013 certificate here.

  • Cyber Essentials certified

    CaptionHub continually monitors and responds to cyber security threats. We are certified with Cyber Essentials, a UK government scheme supported by the National Cyber Security Centre that sets out security controls to protect us from cyber attacks. You can download our Cyber Essentials Certificate here.

  • GDPR-compliant

    Both the EU GDPR and national privacy laws bring strict requirements regarding how long personal data may be retained for. CaptionHub is required to process personal data accordingly, and committed to doing so.

  • Encryption and access control

    We encrypt all traffic to and from your browser via SSL/TLS (TLS 1.2 with SHA256 certificate). All your data is encrypted at-rest, using 256-bit encryption. Servers are passwordless, and require 2048-bit RSA keys to provide direct access to the box. All keys are unique to individual administrators or service accounts and are not shared. Network-level firewalls prevent unauthorised traffic from reaching servers in the data centre.

  • Data centres and physical security

    CaptionHub only entrusts your security to another party when we have total confidence in their ability to maintain and enhance it. CaptionHub is hosted with AWS, and only authorised personnel with legitimate business needs are granted access to their state of the art data centres. Physical access is strictly controlled by professional security staff using a combination of video surveillance, intrusion detection systems, multiple sets of two-factor authentication and other electronic means.

  • Backups

    We take daily backups of our database. We don’t back up video data, but we do back up caption data/work so that it can be restored. We redundantly store data across multiple devices and facilities. Video data is also stored on servers with a durability rating of 99.999999999%.

  • Continuous security improvement

    Our security constantly evolves to meet emerging threats. We regularly execute penetration testing and keep up with industry best practice. Certified with ISO27001, risk planning and documentation, incident management and non-conformance logging are all carried out in our business as usual activities

  • Best practice security measures

    CaptionHub produces an audit trail for logged in users, with expiring URLs that make it difficult to download linked media even where access has been granted. A logged-in user email address is superimposed over video, so that screen captures are traceable. Enterprise customers also benefit from additional security measures, including IP white-listing, MFA, SSO and more.

Feature checklist

  • ISO 27001 certified

  • Cyber Essentials certified

  • SSO options

  • At-rest encryption

  • IP whitelisting

  • Regular pentesting

  • Media watermarking

  • Daily security patching

  • MFA authentication

  • On-premise deployment options

  • Full audit trail