Genially: Security & Privacy

TRUST CENTER

Security and
privacy

At Genially we’re committed to providing a secure and trusted platform for our diverse community of users. Find out how we protect your data in accordance with international regulations and strict security safeguards.

Trusted by the world’s leading organizations

COMPLIANCE

SOC 2 certified

Genially has SOC 2 Type 2 certification, the gold standard in security for companies who store, process, or manage data in the cloud. SOC 2 (Service Organization Control 2) confirms not only that Genially implements strict security, access, confidentiality, and privacy controls in the management of user data, but that these safeguards are applied consistently and reliably over time.

How SOC 2 guarantees that your data is protected by rigorous controls and the highest security standards:

Strict compliance protocols

SOC 2 requires annual security audits to be carried out by external experts.

Regular penetration testing ensures our platform is protected against cybersecurity threats.

We carry out continuous monitoring to detect and mitigate any potential vulnerabilities.

Your data is secure

Advanced security measures prevent unauthorized access or the loss of information.

Reliability and guaranteed access to the platform, with contingency protocols in place.

Genially complies with international data privacy regulations including GDPR, FERPA, and COPPA.

Trust and transparency

Audits carried out by an external party provide an independent guarantee of compliance.

Our public certificates are obtained from an acknowledged authority and are available to view.

GDPR compliant

Genially is based in Europe and fully compliant with GDPR – the world’s strongest regulations on the handling of personal data. We store our data inside the European Economic Area, in AWS Data Centers in Ireland. AWS architecture guarantees the protection of confidentiality and data sovereignty, ensuring that Genially has complete physical and network security.

Even if you’re outside Europe, your data is handled and stored in line with the GDPR’s stringent framework. This applies to every Genially user, with any type of account.

SECURITY & PRIVACY

Enterprise grade security and data safeguards

Encryption

All data (both designs and communications) is encrypted with TLS 1.3 in transit, and AES-256 at rest.

Access

A Least Privilege (PoLP) policy limits access and safeguards critical information.

Response

We identify, control, and mitigate any risk immediately, and guarantee a response within 72 hours, in accordance with GDPR.

Classification

Strict classification systems control which data is confidential, restricted, or public.

Infrastructure

Our systems are protected by anti-malware tools, real-time monitoring, and a
web application firewall (WAF).

Development

A security-by-design approach to software development involves regular scans, staged releases, and segregation of our dev, testing, and production environments.

Anti-phishing

We have robust measures in place to block attempted phishing. User email addresses are protected by DMARC, SPF, and DKIM authentication.

Testing

Our team of security engineers carry out constant monitoring to detect potential vulnerabilities in our infrastructure and software.

Responsible use of AI

At Genially we believe in the ethical, secure, and transparent application of artificial intelligence. We offer AI-powered tools to help our users create content, but we don’t use data to train AI models.

Your data

Genially does not use data from users or their designs to train AI models, neither our own nor those of third parties.

User experience

AI features in Genially are designed to help users generate ideas and optimize the content creation process. Nothing more.

Admin controls

Workspace Admins can restrict team members from accessing AI features such as Image Generation.

Education safe

In a Class Workspace, students under the age of 13 or 16 are automatically restricted from using specific AI features.

RELIABILITY

Business continuity

Our infrastructure is designed and protected to keep Genially highly available, with recovery procedures in place to restore services in the shortest time possible in the event of disruption.

LIVE SERVICE UPDATES

Users can consult the platform’s real-time service status at status.genial.ly. We publish live details about any incident, scheduled maintenance, and service disruptions.

SECURE BACKUPS

Encrypted storage and daily backups ensure that your content is safe, even in the case of a temporary interruption.

RECOVERY

Regular recovery testing, risk assessments, and clearly defined recovery time objectives enable us to ensure the swiftest possible resumption of services.

PRIVACY & ACCESS

You’re in control

Genially gives users control over their data and multiple options for managing content, publication, and team access.

In the cloud

Genially is a cloud-based web app so you don’t need to install any plugins or download software onto your device.

Publishing

Genially offers multiple publishing and sharing settings, restricted access controls and the option to add a password.

Domain restriction

You can protect your material and make sure it’s only viewed by its intended audience by restricting embeds to pre-approved sites.

Backed up

We back up our data every day so your designs are always secure and accessible. When you delete a genially, you can retrieve it from the Trash within 30 days.

Deletion

If you want to say goodbye, it’s easy to delete your account. We don’t keep any information we don’t need and you can withdraw consent to us processing your data at any time.

Account security

Control how team members access the workspace and what they can do. Genially offers Activity logs, Version control, in-app permissions, and SSO for enterprise teams.

K12

Trust for Education

Genially is used by thousands of educational organizations around the world and we are committed to providing a safe learning environment and protecting student and staff data.

Genially is compliant with the Family Educational Rights and Privacy Act (FERPA) and the Children’s Online Privacy Protection Act (COPPA), US federal legislation governing the data privacy of students. As part of these regulations, parent or guardian consent is required before minors under 13 years of age in the US can use the tool.

Check out our K12 User Policy for more information.

FERPA COPPA

Student data is protected in accordance with US federal laws and schools retain control over how information is collected, stored, and shared.

Safeguards for minors

Genially Education Workspaces include additional Admin controls and restrictions on indexing, publishing, the use of AI tools, and embedding third-party content.

K12 deletion policy

If a user under the age of 18 remains inactive on Genially for one year, all of the user's personal information is permanently deleted.

Transparency

Looking for more information? Our privacy, legal, and usage policies are publicly available.

How Genially collects and processes data

TERMS & CONDITIONS

Information about using our services

COOKIES POLICY

How we use cookies on our website

Man reading documents in front of a laptop

LEGAL NOTICE

Transparency and compliance with the law

“Everything that we create and share online is, ultimately, data. Our responsibility at Genially is to safeguard and protect your data from the many threats that exist on the internet”

Read the message from our CTO.

Chema Roldán

Chief Technology Officer at Genially

Looking for more information?

Support

Find user guides and step-by-step tutorials in the Genially Help Center.

Got a question about security, privacy, or compliance? Contact us.

Service status

Check Genially’s live service status at status.genial.ly

Security and privacy