What are the Terms of Service?
Video Window’s Terms of Service are available on the videowindow.com website. The platform is operated by Collaboration Squared Ltd (CSQ), registered in the UK. Contact [email protected] for specific terms and queries.
Is Video Window GDPR compliant?
Yes, Video Window is GDPR-compliant by design. The Privacy Policy covers GDPR rights for users in the EU, UK, Liechtenstein, Norway, and Iceland. Collaboration Squared Ltd acts as Controller or Processor of personal data depending on context.
Who owns the data?
Collaboration Squared Ltd is the Controller of personal data provided to it. Customer data entered into the service (user-generated information) is processed by CSQ as a Processor on behalf of the customer. CSQ does not sell or rent personal data to third parties.
Is a Data Processing Agreement available?
Contact Video Window at [email protected] to request a Data Processing Agreement.
What law governs contracts?
Contact Video Window for specific contract governing law information. The company is incorporated in the UK.
Can it be used in regulated industries?
Video Window uses industry-standard encryption and security practices. For use in highly regulated industries (e.g. healthcare, finance), contact Video Window to discuss specific compliance requirements.
What happens in a data breach?
Collaboration Squared Ltd is committed to protecting personal data. In the event of a breach, the company follows applicable legal requirements for notification. Contact [email protected] for the data breach response policy.
Is Video Window secure?
Yes, Video Window places security as its highest priority. All media and data channels are encrypted. The infrastructure uses Oracle Cloud with SSAE 16 SOC 2 Type 2 certified data centres. Authentication uses AES-256/AES-128 encryption. Firewall compatibility is built in.
Is data encrypted?
Yes, all video conference media is sent via WebRTC channels with VP8, VP9, H264 (and future AV1) codecs. All media and data channels are encrypted using DTLS (Datagram Transport Layer Security) and media streams are encrypted using SRTP (Secure Real-Time Transport Protocol).
What encryption is used?
Media channels: DTLS + SRTP. Authentication/passwords: AES-256 and AES-128 encryption via Laravel and OpenSSL, with Message Authentication Code (MAC) signing. Credit card data in transit: TLS encryption.
Does it work behind firewalls?
Yes, Video Window is designed for enterprise firewall compatibility. During setup, the client connects via HTTPS (port 443/TLS) and automatically determines the best connection method based on the network environment. Specific ports (TCP 80, TCP 443, UDP 10000, UDP 3478, UDP 3479, UDP 443) should be allowed through the firewall. Full firewall documentation is available at videowindow.com/knowledge-base/network-and-security/network-requirements/.
What infrastructure is used?
Video Window uses Oracle Cloud for its infrastructure, which is highly reliable, scalable, and secure, powering hundreds of thousands of businesses in 190 countries. Real-time media is processed in globally distributed tier-1 colocation data centres with SSAE 16 SOC 2 Type 2 certifications.
Are sessions recorded?
No, Video Window sessions are not recorded by the platform. The system is designed for live ambient presence, not recorded meetings.
Has it undergone security audits?
Video Window uses Oracle Cloud infrastructure with SOC 2 Type 2 certified data centres. Contact Video Window for details on any independent security audits.
What happens if servers go down?
The platform is designed with high availability in mind and Video Window uses a globally distributed infrastructure on Oracle Cloud for resilience. In the event of a service disruption, contact [email protected].
Does it support SSO?
SSO is not supported on Video Window.
What data does Video Window collect?
Video Window collects: name, title, email address, telephone number, postal address, IP address, operating system type and version, usage information (actions, date/time, frequency, duration, feature usage), and user-generated information (whiteboard content, etc.). Location information is also collected for connection optimisation and compliance purposes.
Can users control visibility?
Yes, remote users and office users can activate privacy mode to stop their video feed. Audio is off by default and requires active opt-in. Users are always in control of when they are seen and heard.
Does it use facial recognition?
No, Video Window does not use facial recognition technology.
Is data shared with third parties?
CSQ does not sell or rent personal data to third parties for any purposes, including marketing. Data may be shared with third-party service providers for processing or storage purposes (e.g. Oracle Cloud), and with business partners for delivering the service. CSQ will not share data beyond what is necessary to provide the service.
How can I submit a data request (DSAR)?
To submit a Data Subject Access Request (DSAR) or exercise any data rights (access, rectification, erasure, portability, etc.), contact the Privacy Team at [email protected].
