Security & Compliance
Real-time status of our security controls.
SOC 2 Type II
Audited by Deloitte. Report available.
HIPAA Ready
For Medical & Scientific Symposiums.
PCI-DSS Level 1
Secure Ticket & Payout Processing.
Content Protection (DRM)
JINXY employs enterprise-grade DRM (Widevine, PlayReady) for all live and VOD assets. Tokenized access links are generated dynamically 15 minutes prior to events and expire automatically to prevent unauthorized sharing.
Email Delivery Security
To ensure the delivery of high-value tickets and invoices, JINXY enforces:
- SPF/DKIM: Strict alignment for all sending domains.
- DMARC: 'Reject' policy enforced to protect tenant brands.
- MTA-STS: Enforced TLS for all mail transport.
Data Encryption
Data in transit is encrypted via TLS 1.3. Data at rest (including attendee PII and financial logs) is encrypted using AES-256 GCM. Keys are managed via AWS KMS with automatic rotation.
Vulnerability Management
We conduct quarterly penetration testing and maintain a private Bug Bounty program. Critical patches for our Kubernetes clusters are applied within 24 hours of release.