Ooyala Completes SOC 2 Type 2 Attestation Reaffirming Commitment to Customer Content Protection

Wednesday, December 7, 2016
SANTA CLARA, Calif. -- (December 7, 2016) -- Ooyala, a Telstra subsidiary and a global leader in premium video publishing, production workflow, analytics and monetization, today announced the completion of the Service Organization Controls (SOC) 2 Type 2 audit highlighting the company's commitment to customer data security. The successful completion validates that the design and operating effectiveness of Ooyala's online video platform and analytics software and services meet the criteria for the security, availability, and confidentiality principles set forth in the American Institute of Certified Public Accountants’ (AICPA) Trust Service Principles. 
"Major broadcasters and media companies around the globe rely on Ooyala to help them build engaged, profitable audiences, as they monetize their video and TV content. They need technology partners with robust information security and privacy management systems to minimize risks and retain compliance with laws, regulations and internal policies. This attestation is validation of our platform and our security management system," said William Billings, chief information security officer at Ooyala. "Our emphasis on security is one of the reasons that 500-plus of the the world’s top video providers and global companies run their video business on Ooyala."
Completion of the security, availability, and confidentiality of the Trust Service Principles of the SOC 2 Type 2 report is the result of a continuous audit conducted to ensure the proper operation of security controls. The audit amounted to more than 150 tests over a nine-month period. The report and testing, conducted by the independent, internationally recognized firm Frank, Rimerman + Co., LLP, supersedes the SOC 2 Type 2 report that Ooyala received in September 2015, which tested the suitability of the company's design and operating effectiveness of security controls.
A report from industry research firm, The Gartner Group, titled, “Regulatory Compliance Alone Cannot Mitigate Cloud Vendor Risks,” recommends that customers should regularly "obtain annual audit reports, such as the vendor's SOC 2 report, and confirmation of critical certifications." The report adds, "Attach these certificates and attestations to the cloud vendor's risk profile each year as they are received."
Since being founded, protecting the security and privacy of customer content and data has been a top priority for Ooyala. The Ooyala privacy management system is based on the EU-U.S. Privacy Shield.
About Ooyala:
A US-based subsidiary of global telecommunications and IT services company Telstra, Ooyala's comprehensive suite of offerings includes one of the world's largest premium video platforms, a leading ad serving and programmatic platform and media logistics solution that improves video production workflows. Built with superior analytics capabilities for advanced business intelligence, Ooyala's solutions help broadcasters, operators and media companies build more engaged and more profitable audiences, with personalized experiences across every screen.
Vudu, NBCUniversal, Star India of 21st Century FOX, Sky Sports (U.K.), ITV Studios (U.K.), RTL Group (Germany), M6 (France), TV4 (Sweden), Mediaset (Spain), America Television (Peru), and Media Prima (Malaysia): these are just a few of the hundreds of broadcasters and media companies who choose Ooyala.
Headquartered in Silicon Valley, Ooyala has offices in Chennai, Cologne, Dallas, Guadalajara, London, Madrid, New York, Paris, Singapore, Stockholm, Sydney, Tokyo, and sales operations in many other countries across the globe. For more information, visit www.ooyala.com.