A product of StreamOn Technologies Inc. — enterprise event delivery since 2014
Security & Compliance

Built for regulated
enterprise event programs.

Privacy controls, security frameworks, audit trails, and compliance readiness for healthcare, financial services, and regulated enterprise event workflows.

VIDE registration with consent and data capture controls
Registration & consent capture
Compliance certificate output
Compliance outputs
Audit-friendly onsite operations view
Onsite audit views

Enterprise Security Controls

VIDE includes privacy controls across registration, event access, engagement, on-site operations, and post-event reporting.

Consent & Preference Control

Versioned consent records, attendee opt-ins, registration consent fields, and marketing preference categories support privacy-first event operations.

Retention & Right to Delete

Configurable TTL policies for registrations, leads, and check-in logs plus right-to-delete queues for attendee data requests.

Enterprise Access Security

OIDC/OAuth SSO (works with Okta, Azure AD, and Google Workspace), role-based permissions, audit logging, and optional SCIM user provisioning.

Secure Web Delivery

CSP, frame protection, content-type hardening, strict referrer policy, permissions policy, HTTPS delivery, and same-origin admin protections.

Compliance Framework Alignment

Platform controls mapped to global security and privacy frameworks for enterprise procurement and security reviews.

Control alignment disclaimer

This section describes platform control alignment and audit-readiness — not formal certification or attestation. Any representation related to HIPAA, GDPR, SOC 2, ISO 27001/27701, OWASP, or other frameworks must be validated through signed audit reports, legal agreements, BAAs/DPAs, and current control evidence before procurement or public use.

Framework
VIDE Control Alignment
Platform Evidence
Readiness Status
GDPR / UK GDPR
Consent, purpose limitation, retention, data subject deletion workflow
Consent versions, consent records, TTL policies, right-to-delete queue
Control alignment
U.S. State Privacy Laws
Notice, consent preference support, retention limitation, deletion workflows
Registration consent fields, privacy policy, delete queue, configurable data retention
Control alignment
SOC 2 Trust Services
Security, availability, confidentiality, change control, access governance
RBAC, SSO, audit history, secure headers, resilience planning, admin access controls
Readiness benchmark
ISO 27001 / ISO 27701
Information security and privacy control mapping
Access controls, privacy lifecycle, event-level governance, deletion and retention records
Control mapping
HIPAA / HITRUST
Healthcare event safeguards for sensitive attendee workflows
Encrypted duty-of-care payloads, restricted access, consent capture, audit-focused reporting
Readiness benchmark
OWASP / CIS
Browser hardening, least privilege, secure session and admin boundaries
CSP, X-Frame-Options, nosniff, strict referrer policy, permissions policy, same-origin admin UI
Control alignment

Audit & Governance

Comprehensive logging, role-based access controls, and audit trails for enterprise security reviews.

Comprehensive Audit Logs

  • User authentication events
  • Data access and modifications
  • Permission changes
  • Event creation and updates

Role-Based Access Control

  • Granular permissions system
  • Role-based event access
  • Event-level access controls
  • SSO group inheritance

Data Governance

  • Data residency controls
  • Retention policy enforcement
  • Export and deletion queues
  • Privacy notice management

Security Documentation & Support

Need security questionnaires, audit reports, or DPA/BAA agreements? Our security team provides documentation for enterprise procurement.