Security, privacy and compliance

Our enterprise-proof platform is built on your principles for data security and data privacy. This way, you can be sure that you are fully compliant with legal requirements.

All personal information is processed within the European Economic Area (EEA)

Vormats guarantees that all personal data and information will not leave the European Economic Area (EEA). It is processed and stored here, also by the affiliated sub-processors.

See our whitepaper


Singe Sign-On (SSO)
SSO is available to external enterprise-identity providers who comply with SAML-standards. Vormats is optimised for federation with Azure, AuthO, Google and OpenAM.
Information is secured with world-class encryption including from ‘in transit’ with TLS 1.2+ and ‘at rest’ with the AES-256-algorithm, with frequent encrypted back-ups.
Vulnerability scans
The Vormats-platform is monitored for security events using scanning software for the scanning of vulnerabilities of third parties and with architecture-specific monitoring tools
Penetration testing
Our systems are regularly penetration tested by an independent professional. The results are entered into the change management registry to ensure Vormats’ information security management system is continuously improved.
IT architecture and infrastructure
The IT-foundation of our platform and systems are based on the ability to do business with all companies worldwide, regardless of industry and regulations.
Data classification
With Vormats data classification system videos can be easily classified by the video owner via three levels of confidentiality. The content of the video determines whether passwords and sanity checks are required.
Vormats development process follows the OWASP top-10-norms and the Secure Software Development Lifecycle (SDLC) for the building of safe applications.
Two step verification (2FA)
Our authentication system makes use of best practice-mechanisms in the industry and complies with strict regulations, such as HIPPA. Our system can be expanded with 2FA via the authenticators from Microsoft and Google.

External independant auditor

Vormats has hired NAQ-Cyber as an external independent auditor to periodically review processes and systems for compliance with information security policies and other requirements.

Security training for privacy awareness

All staff and contractors are regularly trained by our partner NAQ-Cyber. They are obligated upon commencement of employment to follow our cyber security and AVG training which is repeated annually, including the associated examinations.


Our platform is developed within the framework of the General Data Protection Regulation (GDPR), so that you fully comply with all legal requirements.
ISO 27001
ISO 27001
Our ISO/IEC 27001-certification confirms the measures we have taken with regard to customer data within the meaning of the General Data Protection Regulation (GDPR).
IASME Governance
IASME Governance
IASME Governance is an Information Assurance-standard developed to easily and affordably support and help to improve the cybersecurity of small and medium-sized businesses (MKB).
SOC 2 Type II
SOC 2 Type II
The infrastructure of Vormats is managed by a trusted cloud service provider subject to the Service Organisation Controls (SOC2) (Type II) Trust Services Principles.

FAQ for Security, Privacy and Compliance

We are transparent about the technical and organisational measures that we take and are happy to provide insight into this in all openness.


They already use Vormats


Vormats gebruikt cookies

Vormats maakt gebruik van cookies en vergelijkbare technieken om het gebruik van de website te analyseren, om het mogelijk te maken content via social media te delen en om de inhoud van de site en advertenties af te stemmen op uw voorkeuren. Deze cookies worden ook geplaatst door derden. Door op akkoord te klikken, stemt u hiermee in.

Hieronder leest u welke soort cookies wij plaatsen als u op "akkoord" klikt. Geeft u uw akkoord liever niet? Dan plaatsen we slechts functionele cookies. Deze zijn noodzakelijk voor het goed functioneren van onze website en het uitvoeren van metingen. Wilt u meer lezen over wat een cookie is en doet? Dit kunt lezen in ons cookie statement.


  • Cookies voor advertenties en relevante aanbiedingen over onze producten en diensten.
  • Cookies voor advertenties en relevante aanbiedingen over onze producten en diensten ook op de sites van derden.


  • Functionele cookies voor optimaliseren van
  • Analytische cookies waarmee wij het bezoek aan onze website meten.