Sharpvue
Demo
Trust Center

Security, privacy, and trust.

iVISION software is built to protect the footage and data it captures. Here's how we secure it, the standards we hold, and how to request our compliance documents.

Independently audited controls for security and availability.

Certified information-security management system.

Data-privacy program with a Data Processing Addendum available.

Compliant hardware — no prohibited components. Made in the USA.

Reports and certificates are available on request — see Documents below.

Our Security Program

Defense in depth, from the edge to the cloud.

Edge & On-Device

  • AI analytics run on the camera at the edge — alerts and metadata generated on-device, not in the cloud
  • Footage stays on-site by default; cloud sync is opt-in per deployment
  • Continues recording and detecting through network outages (ANR)

Data Security

  • Encryption in transit with TLS 1.2+ across all connections
  • AES-256 encryption at rest for stored video and metadata
  • Configurable retention and automatic purge policies

Access Control

  • Role-based access control with least-privilege defaults
  • Single sign-on (SSO / SAML) and multi-factor authentication
  • Full audit logging of user and administrative activity

Infrastructure Security

  • Hardened, continuously monitored cloud infrastructure
  • Automated backups with tested recovery procedures
  • DDoS protection and 24/7 health and uptime monitoring

Network Security

  • Network segmentation and firewall enforcement
  • ONVIF and 802.1x support for secured device onboarding
  • VPN and HTTPS-only administrative access

Application Security

  • Secure development lifecycle with peer code review
  • Dependency and vulnerability scanning in the pipeline
  • Regular third-party penetration testing
Data Privacy

You own your data.

iVISION processes data on behalf of our customers under a Data Processing Addendum aligned with GDPR and CCPA. We don't sell personal data, and footage is never used to train third-party models.

We engage a limited set of vetted subprocessors to operate the service. The current subprocessor list is maintained and available on request, and customers are notified of material changes. For privacy questions or data-subject requests, use our contact form or see our Privacy Policy.

Documents

Request our compliance package.

The following are available to customers and qualified prospects, typically under a mutual NDA. Tell us which you need and we'll get them to you.

  • SOC 2 report
  • ISO 27001 certificate
  • Security & architecture whitepaper
  • Data Processing Addendum (DPA)
  • Penetration test summary
  • Subprocessor list
Request documentsReport a vulnerability

Questions about security?

Our team is glad to walk through our controls, complete a vendor security questionnaire, or scope a deployment to your compliance requirements.

Talk to our security team