Trust center

Security and privacy

At Genially we’re committed to providing a secure and trusted platform for our diverse community of users. Find out how we protect your data in accordance with international regulations and strict security safeguards.

Two IT professionals reviewing server racks in a data center.
TikTok
Glovo
Intel
Figma
360 Learning
Cruz Roja
Google for Education
Coca-Cola
Oxford University
Maristas
Santillana
Université Gustave Eiffel

Compliance

SOC 2 certified

Genially has SOC 2 Type 2 certification, the gold standard in security for companies who store, process, or manage data in the cloud. SOC 2 (Service Organization Control 2) confirms not only that Genially implements strict security, access, confidentiality, and privacy controls in the management of user data, but that these safeguards are applied consistently and reliably over time.

SOC 2 Type II certification badge (Prescient Assurance) and AICPA SOC seal.

How Soc 2 guarantees that your data is protected by rigorous controls and the highest security standards:

  • Strict compliance protocols

    • SOC 2 requires annual security audits to be carried out by external experts.
    • Regular penetration testing ensures our platform is protected against cybersecurity threats.
    • We carry out continuous monitoring to detect and mitigate any potential vulnerabilities.
  • Your data is secure

    • Advanced security measures prevent unauthorized access or the loss of information.
    • Reliability and guaranteed access to the platform, with contingency protocols in place.
    • Genially complies with international data privacy regulations including GDPR, FERPA, and COPPA.
  • Trust and transparency

    • Audits carried out by an external party provide an independent guarantee of compliance.
    • Our public certificates are obtained from an acknowledged authority and available to view on our Security Profile page.

GDPR compliant

Genially is based in Europe and fully compliant with GDPR – the world’s strongest regulations on the handling of personal data. We store our data inside the European Economic Area, in AWS Data Centers in Ireland. AWS architecture guarantees the protection of confidentiality and data sovereignty, ensuring that Genially has complete physical and network security. Even if you’re outside Europe, your data is handled and stored in line with the GDPR’s stringent framework. This applies to every Genially user, with any type of account.

Laptop screen showing a map of Europe with data center locations marked, next to the GDPR compliance icon.

Security & privacy

Enterprise grade security and data safeguards

  • Encryption

    All data (both designs and communications) is encrypted with TLS 1.3 in transit, and AES-256 at rest.

  • Access

    A Least Privilege (PoLP) policy limits access and safeguards critical information.

  • Response

    We identify, control, and mitigate any risk immediately, and guarantee a response within 72 hours, in accordance with GDPR.

  • Classification

    Strict classification systems control which data is confidential, restricted, or public.

  • Infrastructure

    Our systems are protected by anti-malware tools, real-time monitoring, and a web application firewall (WAF).

  • Development

    A security-by-design approach to software development involves regular scans, staged releases, and segregation of our dev, testing, and production environments.

  • Anti-phishing

    We have robust measures in place to block attempted phishing. User email addresses are protected by DMARC, SPF, and DKIM authentication.

  • Testing

    Our team of security engineers carry out constant monitoring to detect potential vulnerabilities in our infrastructure and software.

Responsible use of AI

At Genially we believe in the ethical, secure, and transparent application of artificial intelligence. We offer AI-powered tools to help our users create content, but we don’t use data to train AI models.

  • Your data

    Genially does not use data from users or their designs to train AI models, neither our own nor those of third parties.

  • User experience

    AI features in Genially are designed to help users generate ideas and optimize the content creation process. Nothing more.

  • Admin controls

    Workspace Admins can restrict team members from accessing AI features such as Image Generation.

  • Education safe

    In a Class Workspace, students under the age of 13 or 16 are automatically restricted from using specific AI features.

Reliability

Business continuity

Our infrastructure is designed and protected to keep Genially highly available, with recovery procedures in place to restore services in the shortest time possible in the event of disruption.

Privacy & access

You’re in control

  • In the cloud

    Genially is a cloud-based web app so you don’t need to install any plugins or download software onto your device.

  • Publishing

    Genially offers multiple publishing and sharing settings, restricted access controls and the option to add a password.

  • Domain restriction

    You can protect your material and make sure it’s only viewed by its intended audience by restricting embeds to pre-approved sites.

  • Backed up

    We back up our data every day so your designs are always secure and accessible. When you delete a genially, you can retrieve it from the Trash within 30 days.

  • Deletion

    If you want to say goodbye, it’s easy to delete your account. We don’t keep any information we don’t need and you can withdraw consent to us processing your data at any time.

  • Account security

    Control how team members access the workspace and what they can do. Genially offers Activity logs, Version control, in-app permissions, and SSO for enterprise teams.

K12

Trust for Education

Genially is used by thousands of educational organizations around the world and we are committed to providing a safe learning environment and protecting student and staff data. Genially is compliant with the Family Educational Rights and Privacy Act (FERPA) and the Children’s Online Privacy Protection Act (COPPA), US federal legislation governing the data privacy of students. As part of these regulations, parent or guardian consent is required before minors under 13 years of age in the US can use the tool.

Check out our K12 User Policy for more information.

Woman in a blazer smiling next to the FERPA Compliant and COPPA Compliant seals.
  • Ferpa coppa

    Student data is protected in accordance with US federal laws and schools retain control over how information is collected, stored, and shared.

  • Safeguards for minors

    Genially Education Workspaces include additional Admin controls and restrictions on indexing, publishing, the use of AI tools, and embedding third-party content.

  • K12 deletion policy

    If a user under the age of 18 remains inactive on Genially for one year, all of the user's personal information is permanently deleted.

Chema Roldan, CTO of Genially

"Everything that we create and share online is, ultimately, data. Our responsibility at Genially is to safeguard and protect your data from the many threats that exist on the internet"

Chema Roldán

Chief Technology Officer at Genially