Customer Trust Center
Keeping your data secure, confidential, and accessible is Playlist's highest priority. Our industry-leading cyber security program follows a Defense in Depth approach, protecting our organization and your data at every layer. Our program is aligned with CIS CSC and the NIST cyber security framework, and Playlist maintains appropriate brand certifications such as HITRUST CSF and PCI DSS Level 1 service provider. Playlist’s defenses are advanced, continuously monitored, and managed 24/7, 365 days a year by highly trained professionals.
The Playlist Security Team, led by our Chief Information Security Officer (CISO), oversees the design and operation of the company’s security program. The CISO is supported by dedicated experts across Product Security, Security Engineering, Cyber Defense, Detection and Response, and IT Governance, Risk and Compliance, and Security Strategy.
The core mission of Playlist’s cyber security program is to prevent unauthorized access to customer data. To achieve this, our cyber security practitioners, working closely with teams across the organization, identify and mitigate risks, implement best practices, and continuously strengthen our defenses.
View our Security Policy for more information.
Product Security
Product Security
We pay great attention to enterprise features such as access control and single sign on. We are happy to provide more details about our enterprise features upon request.
Data Security
Data Security
We follow industry best practices for data security. We are happy to provide more details about our data security practices upon request.
App Security
App Security
We take application security seriously and are putting together a program to monitor internal apps.
AI
AI
We take the usage of AI seriously in our organization and work to ensure security and reliability of the AI.
ESG
ESG
We prioritize and take environmental, social, and governance (ESG) considerations seriously in our operations and decision-making processes.
Data Privacy
Data Privacy
Privacy of customer data is top of mind. We follow industry best practices and follow all applicable privacy regulations.
Access Control
Access Control
Access is tightly monitored and controlled at our company. We are happy to provide more details about our access control practices upon request.
Infrastructure
Infrastructure
We take great care to work with best-in-class infrastructure providers that provide secure computing and storage. We are happy to provide more details about our infrastructure upon request.
Endpoint Security
Endpoint Security
We follow industry best practices for endpoint security. We are happy to provide more details about our endpoint security practices upon request.
Network Security
Network Security
We protect our corporate network against external & internal threats.
Corporate Security
Corporate Security
We implement internal measures and practices to maintain a high standard of security.
Security Grades
Security Grades
We are constantly monitoring the security of our website. We will post our grades from public security rating agencies when they become available.
Incident Response
Incident Response
We have a dedicated team that responds to security incidents. We are happy to provide more details about our incident response practices upon request.
Risk Management
Risk Management
We have a dedicated team that manages security risks. We are happy to provide more details about our risk management practices upon request.
Asset Management
Asset Management
We have strict asset management policies in place to ensure that all assets are accounted for and secure.
BC/DR
BC/DR
We have a business continuity plan in place to ensure that we can continue to operate in the event of a disaster.
Training
Training
We provide security awareness training to all employees to ensure that they are aware of security best practices.
Change Management
Change Management
We have a change and configuration management process in place to ensure that changes are properly reviewed and approved.
Physical & Environment
Physical & Environment
We have physical and environmental controls in place to ensure that our data centers are secure and reliable.
Continuous Monitoring
Continuous Monitoring
We continuously monitor our systems for security threats and vulnerabilities. We are happy to provide more details about our continuous monitoring practices upon request.
