Security
Security at Clipsilo
We take the protection of your content assets and account data seriously.
Encryption in transit
All data transmitted between your client and Clipsilo is encrypted via TLS 1.2+. We enforce HTTPS across every endpoint — no plaintext connections accepted.
Encryption at rest
S3 assets are encrypted at rest using AES-256. Your database records are stored on encrypted volumes. Encryption keys are managed via AWS KMS.
Your S3, your control
Bring your own bucket — your data never passes through Clipsilo's servers. We generate pre-signed S3 URLs for direct client-to-bucket transfers. You retain full ownership and access control over your files at all times.
Access controls
API key authentication on every request. Role-based account access so team members only see what they need. A full audit log records every action — who did what, and when.
Data isolation
Account data is fully isolated. Every query is scoped to the authenticated account — there are no cross-tenant data queries possible by design.
Security concern? Email security@clipsilo.io