Sessions & Encryption

  • User sessions are "sandboxed" and cannot access the data of other users.
  • User input and screen contents are not saved locally.
  • Access controls and firewall rules grant only minimal privileges.
  • Each session receives a unique token that can only be used once to start a session.
  • All data transfers are SSL-encrypted.
  • There is regular monitoring for potential vulnerabilities.

Server Security

The EYEVIDO Cloud is operated in a high-tech data center in Cologne (Germany). The servers offer sufficient capacity to store all eye tracking and interaction data in a multiredundant way. This ensures that our cloud solution operates at the highest level of quality and security.
Comprehensive security concepts, the highest quality standards, excellent connections and redundant components guarantee the highest level of data protection and availability.

TÜV tested

Within the scope of a penetration test based on the "Open Source Security Testing Methodology Manual" (OSSTMM) and the guideline for conducting penetration tests by the Federal Office for Information Security, the EYEVIDO Cloud Software was tested by independent security experts of TÜV SÜD. In addition, tests were conducted according to the "OWASP Testing Guide", the Open Web Application Security Project. Together with TÜV SÜD experts, effective protection mechanisms for optimum data security have been implemented in several iterations.

Our data security is at the highest level and thus meets the requirements of a sole proprietorship up to the demands of a large corporation. For interested parties with particularly restrictive data security guidelines, we offer the possibility of inspecting the TÜV SÜD Sec-IT final report in the interest of a maximum transparent risk assessment.