Brandfolder Security

At Brandfolder, the security of your brand assets is our highest priority. Our engineering team uses the best tools and practices available to build and maintain Brandfolder. You can rest assured that we've implemented multiple levels of security to protect and back up your files.

Identity management

Brandfolder enables the right individuals to access the right resources at the right time. It provides a seamless and secure way for your organization to manage your digital assets.

  • SAML 2.0 SSO
  • User management and permissions
  • Privacy and Stealth Mode settings
fingerprint identification
map showing distributed storage

Storage and delivery

An Enterprise DAM platform that offers quick, easy and secure upload and storage capabilities on a global scale.

  • GCP or AWS Storage with a 99.99% availability
  • Globally distributed Content Delivery Network (CDN)
  • Content ingestion network with lightning fast upload speeds
  • Global storage locations in the US, Asia, Europe, and others
  • Custom storage solutions for enterprise clients

Security and ownership

Your data is yours, and yours only. Brandfolder will protect your data from internal and external threats, making it the safest home for all of your important brand assets.

  • Regular security audits and pen testing
  • Disaster recovery procedures
  • Internal and external data security
house with a key representing security
multiple users connected

Performance and scalability

Whether you're a small business or on the path to being recognized as a Fortune 50 enterprise, Brandfolder offers a scalable solution to meet your organization's needs.

  • Unlimited end users
  • Scalable asset storage
  • Flexible organization structure
  • Exceptional customer service that scales as your business grows

SOC 2 Type 2 compliant

Brandfolder has completed its SOC 2 Type 2 audit for its security and confidentiality controls. This means Brandfolder has established processes and practices against these controls that have been validated by an independent third party.

  • Independent third-party examination
  • Gold standard security compliance for SaaS
  • Strict security and confidentiality procedures in place
SOC 2 compliance badge

Online protection

All data traveling between a customer device and Brandfolder is secured with SHA256 with RSA signed certificates and encrypted using HTTPS to protect against eavesdropping, tampering and message forgery. Brandfolder only accepts traffic from 2 whitelisted ports, and has built-in intrusion detection instrumented with monitoring and alerts.

Risk assessment

Brandfolder IT reviews and regularly updates IT vulnerabilities, controls, and risk impacts. The assessment evaluates security vulnerabilities affecting confidentiality, integrity, and availability. Appropriate security safeguards are recommended, permitting management to make knowledge-based decisions about security-related initiatives.

Durability & back-ups

By leveraging Amazon Web Services (AWS) and Google Cloud (GCP), Brandfolder offers best in breed online and physical security measures, 99.999999999% durability and 99.99% availability of objects over a given year. Brandfolder ensures streaming replication back ups so that no changes or updates are lost in the event of a disaster.

Physical security

AWS and GCP provide state of the art data center security, including around the clock staffing, video surveillance and intrusion detection systems. Authorized access is granted on a need to know basis. In the Brandfolder office, all workstations are regularly updated and monitored for malware protection. All administrative interfaces are accessed through key-card and/or 2FA user authentication.

Reach out to our team if you would like to learn more about our security at security@brandfolder.com