Trust Center

All customer data is protected using strong encryption standards.

• Data in transit is encrypted using modern TLS protocols
• Data at rest is encrypted using industry-standard encryption methods
• Secure transmission is used for all file uploads and service delivery

These protections help ensure that client content and service data remain protected during processing and storage.

Access to systems and customer data is restricted using multiple layers of protection.

• Role-based access controls limit access to authorized personnel only
• Multi-factor authentication is required for system access
• Access permissions are reviewed regularly
• The principle of least privilege is applied to all operational roles

These controls help ensure that only authorized individuals can access sensitive systems or customer data.

Aberdeen maintains continuous monitoring and logging to detect suspicious activity and protect customer systems.

Security monitoring helps us identify unusual behavior, investigate potential threats, and respond quickly to incidents if they occur. Our team follows established procedures for incident response, investigation, and remediation.

Some Aberdeen services use automated speech recognition or translation technologies to deliver faster and more affordable accessibility solutions.

Customer content processed through these systems is used only for service delivery.

Aberdeen does not use customer data to train AI models without explicit written authorization from the client.

Depending on the service provided, Aberdeen may act as either:

Data Controller
for website visitors, business contacts, and general communications

Data Processor
when processing content on behalf of clients using our captioning, transcription, or translation services.

In these cases, our clients remain the Data Controller, and Aberdeen processes data only according to client instructions and applicable data protection laws.

Aberdeen retains customer content only as long as necessary to deliver services and support operational requirements.

Typical retention practices include:

• Live captioning audio processed in real time and not stored after service delivery
• Post-production media files retained briefly for delivery verification before automatic deletion
• Client-controlled retention options when extended storage is requested

Clients may request immediate deletion or customized retention policies when needed.

Aberdeen maintains a structured business continuity program designed to support service delivery during unexpected disruptions.

Key elements include:

• Cloud-based infrastructure designed for redundancy
• Distributed workforce capable of operating remotely
• Multiple communication channels for client support
• Operational procedures for maintaining service continuity

Critical systems and operational data are protected through backup and recovery procedures designed to restore services quickly if necessary.

These safeguards include:

• Automated backups
• Redundant cloud infrastructure
• Defined recovery objectives for critical services

Aberdeen maintains a formal incident response process designed to detect, investigate, and resolve security incidents.

If a security incident affecting customer data were to occur, Aberdeen follows established procedures to:

• Contain and investigate the incident
• Remediate vulnerabilities
• Notify affected clients when required by law or contract
• Implement corrective measures to prevent recurrence