Security Statement
Last Updated: May 15, 2026
At Creative Presentation Resources, LLC, dba CPR Interactive, we take the security of client information, project materials, credentials, and business communications seriously. As a digital creative agency, we may handle client-owned assets, strategy documents, creative concepts, website files, analytics, production materials, source code, platform access information, and other project-related data. We use reasonable administrative, technical, and organizational safeguards designed to protect this information from unauthorized access, misuse, loss, disclosure, alteration, or destruction.
Our security practices include limiting access to client information based on project need, using reputable cloud-based business platforms, applying password management practices, using multi-factor authentication where available, maintaining appropriate access permissions, and requiring team members, contractors, and approved production partners to handle client materials confidentially. Access to client project data is limited to individuals who need it to perform the agreed services.
We take particular care with credentials, platform access, source files, production assets, and client-provided materials. When clients provide access to websites, cloud platforms, analytics accounts, marketing systems, code repositories, file storage, hosting environments, or other systems, we use that access only for the authorized project purpose. We do not request or retain access beyond what is reasonably needed to perform the agreed work, and we follow client instructions for access, storage, handoff, and removal.
CPR Interactive uses trusted third-party providers for business operations such as email, file storage, collaboration, project management, development, hosting, accounting, and communications. These providers support our ability to operate securely and deliver client work. While no system or method of transmission or storage is completely secure, we use reasonable safeguards appropriate to the nature of the information we handle and the services we provide.
When a project involves sensitive systems, regulated data, production environments, confidential materials, or specific security requirements, we follow the applicable agreement, statement of work, nondisclosure agreement, data processing agreement, vendor onboarding requirements, client instructions, or platform-specific requirements. Clients should not send highly sensitive, regulated, restricted, or production-sensitive information unless we have agreed in advance to receive and handle it through appropriate channels.
If we become aware of a security issue that may affect client project data, credentials, systems, or personal information, we will take reasonable steps to investigate, contain, remediate, and notify affected parties as required by applicable law, contract, or client agreement.
Subprocessors and Service Providers
CPR Interactive uses select third-party service providers, business platforms, and production tools to support our operations and deliver client work. Depending on the nature of the project, these providers may process, store, transmit, or provide access to client information, project files, credentials, communications, creative assets, source files, billing records, or other business-related information. We limit access to client information based on project need and use these services only to support authorized business, production, collaboration, development, communication, billing, or project-management activities.
The service providers and platforms we may use include:
- Google Workspace — email, Google Drive, shared documents, calendars, and business collaboration
- Microsoft 365 — email, document collaboration, file storage, Teams, and related business tools
- Dropbox, and OneDrive — file storage, transfer, backup, and collaboration
- Frame.io, Vimeo, Adobe, and Figma — creative review, video collaboration, design, prototyping, production, and asset management
- Adobe Creative Cloud / Adobe Suite — design, motion, video, audio, document, and creative production tools
- Slack, Zoom, and Microsoft Teams — client communication, internal communication, video meetings, and collaboration
- Notion — project documentation, notes, planning, and knowledge management
- GitHub — source code management, version control, development collaboration, and code review
- QuickBooks and payment platforms — accounting, billing, invoicing, payment processing, and financial administration
Not every provider is used for every client or project. Where a client agreement, vendor onboarding process, data processing agreement, or security requirement calls for additional review, approval, or restrictions around specific providers, we will work with the client to identify the applicable tools and follow agreed requirements. We also expect our service providers and approved production partners to maintain reasonable security and confidentiality practices appropriate to the services they provide.
Security and subprocess-related questions may be sent to:
