Meta Security and Privacy – Insight for Business Users
As an official reseller of Meta hardware and software, we believe it's crucial to adequately inform business users about how Meta handles privacy, data protection and security in their XR products. On this page, we provide an overview of the key principles and security measures that Meta applies in, among others, the Meta Quest product line.
 |
Data Protection and LegislationMeta invests heavily in the protection of customer data and offers features that aid in complying with international legislation such as the GDPR. More information can be found in Meta's official whitepapers on security. Download the whitepaper |
Transparency around customer dataMeta makes a clear distinction between customer data (B2B) and consumer data (B2C). Customer data is not sold and only shared with subprocessors when necessary for service delivery and contractually agreed upon. The use of customer data is limited to the agreed purpose and the legal basis, as described in processor agreements, product terms, technical whitepapers and relevant certifications/attestations. Data collected through business Horizon-products are not used for advertising purposes or commercial profiling. Meta publishes periodic transparency reports providing insight into policy enforcement, government requests, and intellectual property protection. They also report on developments that could limit access to Meta technologies.
More information about Meta's transparency can be found in the Transparency Centre. |
 |
 |
Control of External ApplicationsExternal applications in the Meta Horizon Store must comply with strict quality and privacy guidelines. Developers are bound by the Meta Platform Terms and the Developer Policy, which contain requirements for data processing, security, and transparency. Meta can remove apps or developers that violate these rules. The Facebook Developers terms determine how Meta's APIs, SDKs, and data may be used. Developers must handle user information carefully and prevent misuse. More info: https://developers.facebook.com/terms. The Meta Horizon policy rules require that apps are secure, comply with content standards, and undergo a verification process. Non-compliance can lead to app removal. More info: https://developers.meta.com/horizon/policy/.
|
Certifications
Meta has various certifications that demonstrate their processes comply with international standards for information security and data protection. These certifications are periodically checked by independent auditors.
| Certification | Issued by | Download |
|---|---|---|
| ISO/IEC 27001 | EY | Download PDF |
| ISO/IEC 27018 | Schellman | Download PDF |
| SOC 2 | External Audits | Not publicly available |
| SOC 3 | External Audits | Download PDF |
| GDPR (General Data Protection Regulation) | EU Regulation | Download Whitepaper |
| Transparency Report | Meta Platforms, Inc. | View Report |
| ISO/IEC 27701 | Schellman | Available upon request |
Security Settings, Methods and Guidelines
Meta offers various layers of security: from settings and technology to strict guidelines for developers and administrators.
 Security Settings From PIN code protection and network settings to log files and remote wiping: Meta offers tools to securely manage devices. |
 Security Methods Built-in OS protection, encryption, sandboxing, and continuous audits protect the system from attacks. |
 Meta Guidelines From physical access control to incident response – Meta adheres to strict guidelines for secure operations. |
Valued by Leading Organisations
Meta provides XR solutions to leading companies and institutions worldwide. Customers include:
Do you have questions about securely deploying Meta Quest devices in your organisation? Please contact our team – we're happy to help you think about the right hardware and software solutions for your situation.
