Data security and the protection of personal data are becoming increasingly important. As cyberattacks, phishing attempts, account misuse, and other online threats become more sophisticated, photographers and end clients rightly expect a high level of care when image and customer data are processed online. At Saal Digital, we take this responsibility very seriously. We use a combination of technical and organisational measures designed to protect personal data, image data, account access, and system availability in the Photo Portal.
This article provides an overview of the most important measures we take and what you can do yourself to further improve account security.
Data protection and data security are of utmost important to us. We continuously work to maintain and improve our security standards and to reduce risks as much as possible.
Our measures are designed to protect:
Protecting access to accounts and internal systems is one of the most important parts of our security concept.
Multi-factor authentication (MFA / 2FA) is mandatory for all Saal Digital Employees. We provide Multi-factor authentication (MFA / 2FA) also to all photographers using the Photo Portal. This adds an additional layer of protection beyond the password and helps reduce the risk of unauthorized access. Please make sure that you have activated MFA / 2FA in your account. You can review your settings in your account under Security and Data Protection:
Check your two-factor authentication settings
Access to sensitive areas is restricted through role-based permissions. This means users and employees only receive the level of access required for their tasks.
We enforce strong password policies across accounts to support secure authentication.
Session management and automatic timeouts are in place to help prevent unauthorized access, for example if a device is left unattended.
We use protected infrastructure and multiple layers of technical security to safeguard stored and transmitted data.
Our services are hosted in Germany, supporting reliable infrastructure and compliance with European data protection requirements.
Data is stored in certified BSI C5 and ISO 27001 data centers with high physical and digital security standards.
Our infrastructure provider uses a multi-layer firewall system across Saal Digital services to protect systems and network traffic.
Data transmitted through our services is protected using current SSL/TLS standards.
Stored images are protected by multiple encryption layers, including infrastructure-side protection and additional application-level encryption measures implemented by Saal Digital.
Protecting data also means ensuring it remains available and recoverable in the event of technical incidents.
We use regular automated backups of gallery and customer data.
Backup restoration is regularly tested to help ensure that data can be recovered reliably when needed.
Our infrastructure includes redundant systems to support availability, reliability, and resilience.
Defined retention policies help ensure that data remains available for recovery within appropriate timeframes.
Security depends not only on prevention, but also on detecting unusual activity and responding quickly.
Our systems and infrastructure are monitored continuously.
We use mechanisms to detect unusual access patterns or suspicious activity in real time.
Access logs and relevant system events are regularly reviewed to support traceability and security analysis.
We maintain defined incident response procedures, with clear steps from detection and assessment through to resolution and communication.
Security is not only part of system operations, but also part of how our services are built and maintained.
Security is integrated into the development process from the beginning, following a security-by-design approach.
Code changes are subject to internal security reviews before deployment.
Dependencies and third-party components are regularly reviewed for known vulnerabilities.
We carry out regular penetration testing by external specialists to identify potential weaknesses and improve our protections.
Employees involved in development receive regular security awareness training.
Security and privacy go hand in hand. We process data in accordance with applicable data protection requirements.
Saal Digital processes personal data in accordance with GDPR and applicable EU data protection requirements.
We follow the principle of data minimization, meaning only data that is necessary for the relevant purpose is collected and stored.
Photographer and end-customer data is not sold or shared with third parties for commercial purposes.
End customers have rights regarding their personal data, including the right to access, correction, and deletion, in line with applicable legal requirements.
A Data Processing Agreement (DPA / ADV) is available for photographers who require it:
Open the full Data Processing Agreement
We apply defined retention and deletion policies. Galleries and customer data are deleted after defined periods or on photographer request, where applicable.
We carry out regular internal reviews and review relevant compliance and security documentation from our service providers.
Where external service providers are involved, their security standards are an important part of the overall protection concept.
Security is always a shared responsibility. In addition to the protections implemented by Saal Digital, photographers can take important steps themselves.
Since 2FA is mandatory, please make sure it is correctly set up in your account under Security and Data Protection:
Check your two-factor authentication settings
Do not reuse passwords from other services.
Install security updates regularly on your computer, browser, smartphone, and any relevant software.
Be cautious with unexpected emails, messages, login prompts, or links asking for account credentials.
Only allow access to accounts and data where necessary, and review workflows regularly.
If you have further questions about data protection, account security, or the handling of image and customer data in the Photo Portal, our support team will be happy to help.
Get exclusive discounts and designing tips! By signing up, you acknowledge our Privacy Policy. You can unsubscribe at any moment.
Change your country
