At BlueJeans, security and privacy are of primary importance. We are continuously looking for ways to strengthen our practices and protections both in designing and providing our products and services as well as in our internal operations.
Below are some of the measures we have taken in furtherance of our commitment to these critical areas. Because we are consistently looking to improve our levels of security and privacy, we invite you to watch this space – and contact your account manager – for additional details.
The SOC 2 Report is completed following a review by an independent auditor. This report provides more detailed information regarding an organization’s controls relevant to security, availability, and confidentiality of data.
BlueJeans currently undertakes a SOC 2 Type II audit on annual basis and can make the report available to current or potential customers upon execution of a non-disclosure agreement. If you are interested in viewing BlueJeans’ recent SOC 2 Type II report, please contact your account manager for more details.
BlueJeans complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. BlueJeans has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. To learn more about the Privacy Shield program, and to view our certification, please visit .
Security, privacy and integrity are critical to BlueJeans and our relationships with our customers. We know that – while not scheduled to go into effect until May 25, 2018 – the European Union General Data Protection Regulation (GDPR) is top of mind for many of you. This new regulation intends to comprehensively protect personal data of EU citizens, and adds certain additional obligations for all organizations which handle such personal data. BlueJeans is committed to meeting those obligations.
Our security and legal resources are hard at work to help ensure that our services, business practices, and customer agreements are aligned with the GDPR as it goes into effect. Toward that end, we continue our efforts to update our current security and privacy practices as well as have a plan to initiate new ones. These efforts include:
As a company, BlueJeans is continuing to follow the GDPR and its requirements closely. We encourage you to read the new regulations as well, and to reach out to us if you have any questions about our security and privacy practices.
As May 25, 2018 approaches, we want to reiterate our commitment to security, privacy and integrity – we have worked hard to gain your trust and will continue to do so.
BlueJeans is aware of the recently disclosed vulnerabilities referred to as Meltdown and Spectre (CVE-2017-5754, CVE-2017-5753 & CVE-2017-5715) that affect many modern processors including Intel, AMD and ARM and the operating systems running on them. We are taking these vulnerabilities seriously. We are working with our vendors and partners to mitigate them. Patch roll out to secure our cloud services has commenced and will be done in phases. To start with, we will patch systems as necessary based on the security assessment, availability of patches and their performance impact so as not to affect BlueJeans services. Due to the built-in redundancy in our infrastructure, impact to ongoing and new meetings will be minimal. We are also applying patches to our employees’ systems for company-wide protection.
BlueJeans has not found any evidence to indicate that these vulnerabilities have impacted our service or our customers. We will continue to work closely with our vendors and partners to apply futures updates to hardware, firmware and software. We will communicate again if there is any significant information on this topic.
Customer should patch their end user systems running Linux, Windows, macOS, Android and iOS operating systems with the latest updates that address these vulnerabilities from the respective vendors.
All browsers including Chrome, Firefox, Safari and IE on end user systems should be patched to the latest versions that address these vulnerabilities from the respective vendor sites.
Blue Jeans Network Security & Support