Your security is our top priority

Proudly SOC 2 compliant

Uncompromising Data Protection: Secure your competitive edge with ftrack’s SOC 2-compliant security measures. Rest easy knowing your assets and schedules are safeguarded at every project stage.

Earn Client Trust: Our SOC 2 compliance and third-party audits give clients the confidence they need. We’re committed to preventing unauthorized data disclosure.

Guarding Your Creative Assets: SOC 2 compliance is our commitment to protect your most-prized content across ftrack Studio, ftrack Review, and cineSync. Your data is protected from ideation to execution.

Cloud security you can trust

ftrack leverages the robust security infrastructure of Google Cloud Platform for server operations, complemented by Amazon S3 for secure file storage.

But we don’t stop there. We’ve enhanced this solid foundation with advanced security measures such as firewalls and AES-256 encryption at rest. Our platform also offers built-in features like Single Sign-On (SSO) and Two-Factor Authentication (2FA) for an extra layer of account protection.

With ftrack, your content remains securely guarded.

Uncompromising product security

Every phase of the ftrack product lifecycle is rigorously vetted for security – from initial design to final release.

Security is a priority from the get-go when we conceptualize new features. Early risk identification, vulnerability detection tools, and penetration testing are integral to our development process.

Before any new build goes live, we execute a comprehensive set of authorization and permission tests, including both white- and black-box testing. Any changes to the source code undergo a dual review process by at least two developers to ensure the highest level of security.

Secure user authentication

Rest assured, only authorized users can access your ftrack instance.

We offer versatile authentication options including LDAP, AD, Google, SAML, or native ftrack accounts. API access mandates a personal API key, and all server file requests are secured with AWS-supplied HMAC-SHA256 signatures. Role-based permissions further fine-tune user capabilities within the platform.

Our security protocols undergo frequent testing – including vulnerability assessments and simulated penetration attacks – verified by third-party audits.

Security is built into the fabric of ftrack

Our commitment to security isn’t an afterthought – it’s a cornerstone. As we innovate to streamline your workflows, we roll out features to secure them.

From SAML-based single sign-on to private projects, and two-factor authentication, we’ve got features that let you focus on your work, confident it’s secure.

At ftrack, securing your studio’s content is a never-ending commitment.

Our security protocols

Take a look at how we maintain a secure environment at ftrack HQ to protect your valuable work.

cineSync: Secure media review & collaboration from award-winning experts

Created by industry veterans and honored with both Academy Awards and Emmys, cineSync offers a perfect blend of security, quality, and flexibility for modern creative studios.

We prioritize your content’s safety: cineSync doesn’t store media files nor do they pass through our servers. Instead, only 256-bit encrypted sync commands are transmitted. That’s why the world’s leading studios entrust us with their valuable content.

Internal vigilance: Security at ftrack HQ

Our commitment to security transcends our product – it’s part of our daily operations. Here’s how we maintain a fortress of security at ftrack HQ: