Please review the following information about CROO security practices and limitations.
CROO is designed to support professional production teams in organizing projects, schedules, scripts, images, PDFs, and related production materials, including unreleased and confidential production content. The platform implements industry-standard administrative, technical, and physical safeguards to help protect user data.
All data transmitted between users and the CROO application is encrypted using HTTPS. User passwords are securely stored using industry-standard hashing methods and are never stored in plain text. Payment processing is handled by Stripe, and CROO does not store full credit card information on its systems.
Project access within CROO is restricted to the project owner and authorized users explicitly granted access. Users are responsible for managing permissions and for any sharing of project materials with third parties. CROO is not responsible for unauthorized access resulting from user-controlled sharing settings. Publicly shared links, including PDF schedules, may be configured to expire or be restricted to reduce long-term exposure.
CROO utilizes secure, industry-recognized cloud infrastructure providers to host and store project data. Access to user data by CROO personnel is limited to authorized individuals who require such access for system operation, maintenance, or support. Such access is governed by internal security policies, access controls, and confidentiality obligations.
CROO retains user data only as long as necessary to provide its services and for legitimate business purposes. Users may request deletion of their data in accordance with CROO’s data management policies.
While CROO employs reasonable safeguards designed to protect user data, no system or method of transmission over the Internet or electronic storage can be guaranteed to be completely secure. Accordingly, CROO does not guarantee absolute security of any information stored or transmitted through the platform.
In the event of a security incident affecting user data, CROO will take reasonable steps to investigate, respond to, and mitigate the issue in accordance with applicable laws and internal procedures.
For productions requiring enhanced or customized security measures—including projects subject to heightened confidentiality obligations—CROO may offer additional controls or workflows upon request. Users are encouraged to contact CROO support in advance to discuss specific security requirements.