Certifications & Assurance
We are certified for ISO/IEC 27001 (Information Security Management System). This globally recognized standard validates the way we protect the Confidentiality, Integrity, and Availability of our customers’ data across our platform and services.
What ISO/IEC 27001 means for you
Confidentiality
Access to your data is strictly controlled and continuously monitored.
Integrity
Data is accurate, consistent, and protected against unauthorized change.
Availability
Services are resilient, recoverable, and engineered for uptime.
Outcome
fewer risks, faster approvals, smoother vendor onboarding, and peace of mind.
Our ISMS:
How we protect your business
Governance & Policy
Clear ownership, documented standards, and roles.
Risk Management
Systematic risk assessment and treatment plans.
Operational Controls
Access controls, encryption, secure development, backups, monitoring.
Continuous Improvement
Internal audits, corrective actions, management reviews.
Our Certification
ISO/IEC 27001
Information Security Management System
We are officially certified by AENOR, under certificate ID SI-1043/2025.
Scope: The information systems supporting the design, development, implementation, maintenance, operation and provision of professional services for technology solutions/audio-visual platforms for TV and video-on-demand.
Valid until: 01/10/2028
Product Security Policy
Product Security & Vulnerability Disclosure
Product Security & Vulnerability Disclosure
Agile Content is committed to the security of its product "Android Hybrid TV Box", model V5.0A used in hospitality environments.
Reporting vulnerabilities
Security vulnerabilities can be reported to: infosec@agiletv.com Reports should include product details, software version, description of the issue, and steps to reproduce where possible. This service is provided free of charge, in English, and does not require prior registration.
Our process
Once we receive your report, we will:
1. Acknowledge receipt within 7 working days.
2. Assess and triage the report—usually within 10 working days.
3. Engage with you if further technical details are needed.
4. Coordinate remediation internally and aim to resolve confirmed issues in a timely manner.
Once the vulnerability has been identified, we will develop and implement a remediation plan to provide a solution for all affected customers.
Remediation typically takes up to 90 days and in some cases may take longer.
5. Support coordinated disclosure once the issue has been addressed. We appreciate working together to ensure consistent communication with affected users.
We request responsible disclosure and that vulnerabilities are not publicly disclosed before remediation is completed.
Security updates and support
Security updates are provided in alignment with the product lifecycle, platform capabilities, and customer/operator agreements. Depending on product configuration and ecosystem dependencies, security update support may be provided for up to 5 years from the product’s production date; however, the actual duration may vary based on third-party component and software support.
For products supplied to the Australian market:
- A defined security update support period is maintained for each product
- The support period is provided in accordance with product lifecycle and customer/operator agreements
- Once published, the support period is not shortened.
