Trust Center | BlueJeans - Business Video Communications

Security and Privacy at BlueJeans

At BlueJeans, security and privacy are of primary importance. We are continuously looking for ways to strengthen our practices and protections both in designing and providing our products and services as well as in our internal operations.

Below are some of the measures we have taken in furtherance of our commitment to these critical areas. Because we are consistently looking to improve our levels of security and privacy, we invite you to watch this space – and contact your account manager – for additional details.


AICPA Service Organization Control 2 Report

The SOC 2 Report is completed following a review by an independent auditor. This report provides more detailed information regarding an organization’s controls relevant to security, availability, and confidentiality of data.

BlueJeans currently undertakes a SOC 2 Type II audit on annual basis and can make the report available to current or potential customers upon execution of a non-disclosure agreement. If you are interested in viewing BlueJeans’ recent SOC 2 Type II report, please contact your account manager for more details.


EU-U.S. Privacy Shield

BlueJeans complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States.  BlueJeans has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. To learn more about the Privacy Shield program, and to view our certification, please visit .


GDPR Commitment

Security, privacy and integrity are critical to BlueJeans and our relationships with our customers. We know that – while not scheduled to go into effect until May 25, 2018 – the European Union General Data Protection Regulation (GDPR) is top of mind for many of you. This new regulation intends to comprehensively protect personal data of EU citizens, and adds certain additional obligations for all organizations which handle such personal data. BlueJeans is committed to meeting those obligations.

Our security and legal resources are hard at work to help ensure that our services, business practices, and customer agreements are aligned with the GDPR as it goes into effect. Toward that end, we continue our efforts to update our current security and privacy practices as well as have a plan to initiate new ones. These efforts include:

  • Maintaining our existing third party security certifications (such as SOC 2)
  • Maintaining our internal security audit practices
  • Further investing in our infrastructure
  • Analyzing our security and privacy practices
  • Reviewing our current contracts while considering any additional, necessary contractual obligations for the future, and
  • Reviewing our services and our service offerings
  • Modifying our software and systems as needed

Presently, to comply with E.U. regulations regarding international transfers of personal data, we participate in programs like the E.U.- U.S. Privacy Shield framework for transfers to the United States. We are committed to continuing to provide our services with a limited data collection model, and we are happy to walk through what basic user identifying data we store in accordance with our Privacy Policy. If you would like to know more about our existing security practices and how we are already working to protect our customers’ information and privacy, please review our Network Security & Privacy Guide .

As a company, BlueJeans is continuing to follow the GDPR and its requirements closely. We encourage you to read the new regulations as well, and to reach out to us if you have any questions about our security and privacy practices.

As May 25, 2018 approaches, we want to reiterate our commitment to security, privacy and integrity – we have worked hard to gain your trust and will continue to do so.

Blue Jeans Network Security Advisory on Meltdown and Spectre

BlueJeans is aware of the recently disclosed vulnerabilities referred to as Meltdown and Spectre (CVE-2017-5754, CVE-2017-5753 & CVE-2017-5715) that affect many modern processors including Intel, AMD and ARM and the operating systems running on them. We are taking these vulnerabilities seriously. We are working with our vendors and partners to mitigate them. Patch roll out to secure our cloud services has commenced and will be done in phases. To start with, we will patch systems as necessary based on the security assessment, availability of patches and their performance impact so as not to affect BlueJeans services. Due to the built-in redundancy in our infrastructure, impact to ongoing and new meetings will be minimal. We are also applying patches to our employees’ systems for company-wide protection.

BlueJeans has not found any evidence to indicate that these vulnerabilities have impacted our service or our customers. We will continue to work closely with our vendors and partners to apply futures updates to hardware, firmware and software. We will communicate again if there is any significant information on this topic.

Recommended Actions for Customers

Customer should patch their end user systems running Linux, Windows, macOS, Android and iOS operating systems with the latest updates that address these vulnerabilities from the respective vendors.

All browsers including Chrome, Firefox, Safari and IE on end user systems should be patched to the latest versions that address these vulnerabilities from the respective vendor sites.

Feel free to contact support at or email with any questions.

Blue Jeans Network Security & Support


© 2018 BlueJeans Network. All rights reserved.