PIX4D Data Security: ISO 27001 & SOC2 Standards

INSERT SCHEMA MARK UP

Combining surveying accuracy with uncompromising compliance standards

In this article, we discussed how PIX4D solutions achieve high-precision, realistic spatial reconstructions. However, no matter how accurate a 3D scan is, it cannot meet corporate compliance standards if the data is processed or stored in an environment whose security standards are not transparent. While many mobile applications remain vague about their security practices, PIX4D provides a robust data management framework that meets the demanding requirements of professionals.*

• Check our certifications/ processes here.

The reliability of ISO/IEC 27001 certification and SOC2 Type 2

As a provider of mapping software solutions, PIX4D handles highly sensitive data, including high-resolution aerial imagery and 3D models of critical infrastructure. Consequently, PIX4D’s compliance with international data security standards carries significant value.

First, PIX4D has obtained ISO/IEC 27001 certification, the international standard for Information Security Management Systems (ISMS). This certification evaluates more than just technical measures; it covers the entire organization's operations, including employee training, office security, and data backup protocols. This ensures continuous, long-term safety rather than a one-time fix. By maintaining high standards for the confidentiality, integrity, and availability of information, we provide a system that government agencies and sensitive construction projects can use with peace of mind.

Furthermore, PIX4D holds SOC2 Type 2 (System and Organization Controls 2 Type 2) certification, which proves that our cloud services are "actually and continuously secure." While Type 1 evaluates whether security design is appropriate at a specific point in time, Type 2 assesses whether security rules were actually operated correctly over a set period (typically 6 to 12 months). This certification provides third-party assurance that PIX4D’s security remains consistently effective. SOC2 is the standard criteria for adopting SaaS (cloud services) in the North American market and beyond.

Making GDPR a global standard

Headquartered in Switzerland, PIX4D is responsible for complying with GDPR (General Data Protection Regulation), one of the world's strictest data protection laws.

High-resolution smartphone and drone imagery handled by PIX4D may capture identifiable faces, license plates, or residential addresses. Additionally, these images often contain accompanying geolocation metadata. Under GDPR, these are considered sensitive "personal data." PIX4D protects this privacy by adhering to rigorous GDPR standards.

While GDPR is a European law, PIX4D applies these standards to all users worldwide, ensuring that companies in any country can implement our solutions without legal concerns.

Cloud transparency: region selection and incident management

On the PIX4D cloud platform, users can choose the specific data center region (such as Japan, the US, or Europe) where their data is processed and stored. It is recommended that users select their servers to be in their own country or in the closest region to ensure that all data processing and storage remain domestic. This eliminates concerns about "not knowing where data is being handled" and fully protects corporate data sovereignty.

Furthermore, cloud performance and incidents are constantly monitored and disclosed in real-time. While PIX4D services consistently maintain near-100% uptime, users can immediately access the latest status should an incident occur. In such events, client data is protected under PIX4D’s strict internal management standards.

Flexible workflows: no "cloud-mandatory" restrictions

Many smartphone surveying apps are designed to force users to upload all data to the cloud via the internet. In contrast, PIX4D solutions do not require cloud storage. PIX4D supports local desktop processing via PIX4Dmatic for data captured by smartphones, allowing users to generate outputs equal to or better than cloud results without an internet upload.

For environments where external communication is strictly prohibited, we also offer "Offline Licenses" for PIX4Dmatic. By linking the license key to the processing PC's MAC address, even the internet connection for activation becomes unnecessary. This allows highly confidential field data to be managed entirely within a local environment, with zero external communication.

Accurate and secure

At PIX4D, we know that accuracy is non-negotiable. But in a regulated world, you also need transparency. We combine our software with a rigorous management framework, ensuring your data is as secure as it is accurate.

PIX4D provides more than just an analytical tool. We offer:

• A robust management framework backed by international standards (ISO 27001 / SOC2 Type 2)
• Thorough privacy protection based on GDPR standards
• Guaranteed data sovereignty through local server selection and offline processing

By providing these foundations, we remove the barriers of regulation and compliance, allowing you to focus 100% on your core mission: innovating in the field. Let’s build the next generation of surveying workflows together, without compromising on data security.