// Trust & Security Report

    Vidyoai Internet Ventures, Inc. (operating quso.ai, formerly vidyo.ai; legacy entity VidyoAI Ventures Pvt Ltd) logo

    Vidyoai Internet Ventures, Inc. (operating quso.ai, formerly vidyo.ai; legacy entity VidyoAI Ventures Pvt Ltd)

    AI video repurposing and social media suite: AI Clips Generator (long-form to short-form clipping), AI Subtitle Generator, AI Content Repurposing, AI Text-Based Video Editor (Cutmagic, filler-word removal, B-roll), Social Media Scheduler, AI Content Planner, Social Media Analytics, and AI Social Captions. Rebranded from vidyo.ai to quso.ai; both domains are live and share the same privacy policy language.

    Certifications held

    0

    Maturity

    Growth

    Trains on your data

    Yes

    Trust center

    No

    // Certification ledger

    Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.

    > Show 9 unconfirmed / not-held certifications
    SOC 2 (Type 1/2)
    NOT CONFIRMED

    No public evidence. The privacy policy, terms of service, FAQ, and help center pages contain no mention of SOC 2 anywhere on the vendor's own domain.

    source: quso.ai
    ISO 27001
    NOT CONFIRMED

    No public evidence. Not referenced in privacy policy, terms of service, FAQ, or help center content on quso.ai.

    source: quso.ai
    GDPR
    NOT CONFIRMED

    No public evidence of a stated GDPR compliance posture. Direct keyword search of the privacy policy for 'GDPR', 'General Data Protection Regulation', 'European', and 'EU' returned no matches; only a generic clause that data is retained 'for as long as is reasonably necessary... to comply with legal obligations.'

    source: quso.ai
    HIPAA
    NOT CONFIRMED

    No public evidence. Not referenced anywhere on the vendor's own domain; product is a consumer/creator video tool with no healthcare use case indicated.

    source: quso.ai
    PCI DSS
    NOT CONFIRMED

    No public evidence. Payment processing is handled via a third-party processor (Razorpay, per the privacy policy's subprocessor list); no PCI DSS statement found on the vendor's own domain.

    source: quso.ai
    ISO/IEC 42001 (AI Governance)
    NOT CONFIRMED

    No public evidence of any AI governance certification on the vendor's own domain.

    source: quso.ai
    CSA STAR / CSA STAR AI
    NOT CONFIRMED

    No public evidence found on the vendor's own domain.

    source: quso.ai
    ISO 27017 / 27018 / 27701
    NOT CONFIRMED

    No public evidence found on the vendor's own domain.

    source: quso.ai
    FedRAMP
    NOT CONFIRMED

    No public evidence found on the vendor's own domain; not applicable, no US government use case indicated.

    source: quso.ai

    // Privacy & AI training

    Trains on customer data

    Yes

    Data processing agreement

    Not offered

    Data region

    n/a - not verified. No data-region or hosting-location statement found in the privacy policy, terms of service, or FAQ on the vendor's own domain.

    The privacy policy states: 'Our app utilizes advanced AI models to offer features such as transcript. To enhance these features, we share anonymised data with these AI models. This include the video you uploaded to our app.' Sharing is gated behind an explicit consent checkbox: 'By checking this box, you allow us to share anonymised data to enhance app features and functionality.' This is opt-in consent at signup/upload rather than a documented per-tier opt-out control, and no separate enterprise/no-training tier is described on the vendor's own domain. Note: an independent third-party summary (not vendor-sourced) claimed video files are 'not used to train the AI models' and are deleted after 30 days; this contradicts the vendor's own privacy-policy language above and could not be verified against a vendor-domain source, so it is NOT relied upon here.

    // Security controls

    Administrative/physical safeguards

    Privacy policy states the company uses 'reasonable administrative, logical, physical, and managerial measures to safeguard your personal information against loss, theft, and unauthorized access, use and modification' - a general statement with no technical detail (no named framework, no audit reference).

    quso.ai

    Encryption in transit / at rest

    n/a - not verified. No mention of encryption anywhere in the privacy policy or terms of service on the vendor's own domain.

    quso.ai

    Backups

    Terms of service state the company 'perform[s] regular backups of the Content' and will 'restore backups automatically to minimize the impact and downtime' after hardware failure or data loss.

    quso.ai

    Subprocessors

    Privacy policy lists third-party subprocessors including Google Cloud, AWS, Firebase, Agora.io (cloud/infra), SendGrid and SMS Gupshup (communications), Razorpay (payments), and Firebase, Flurry, AppsFlyer, Branch.io, UserExperior, Clevertap (analytics).

    quso.ai

    Account deletion

    n/a - not verified. Third-party reviews (Product Hunt) flag that some users report no self-serve account-deletion option; not confirmed against a vendor-domain source and not used to grade held status.

    quso.ai

    // Products & data scope

    AI Clips Generator / Content RepurposingVideo editing (consumer/creator)

    data: Uploaded long-form video/podcast files (up to 15GB, mp4/m4v/mov/webm) or imported YouTube links; anonymised data (including uploaded video) is shared with third-party AI models per user consent.

    Core product; formerly the entirety of vidyo.ai.

    Social Media Scheduler / Content Planner / AnalyticsSocial media management

    data: Connected social account credentials/tokens (via platform OAuth), scheduled post content, analytics data pulled from connected platforms.

    Added as part of the quso.ai rebrand/expansion beyond video editing.

    AI Text-Based Video Editor (Cutmagic, filler-word removal, B-roll)Video editing

    data: Same uploaded video content as the clips generator; also accesses an integrated stock B-roll/audio library.

    No enterprise/team-tier variant with different data handling is described on the vendor's own domain; all users appear to be on the same consumer-facing product and policy.

    // What to watch

    • No SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR posture statement, or any other formal certification found on the vendor's own domain despite a 4M+ user claim - typical for a consumer/creator-tool startup, but enterprise buyers should be told plainly that no compliance documentation is public.
    • AI-training disclosure: the vendor's own privacy policy discloses sharing 'anonymised data' including the uploaded video itself with third-party AI models, gated by a consent checkbox. An unrelated third-party (non-vendor) summary claims videos are NOT used for training and are deleted after 30 days - this contradicts the vendor's own privacy-policy text and could not be confirmed on a vendor-domain page, so it is flagged as an unresolved contradiction rather than relied upon.
    • No DPA (Data Processing Agreement) offering is described publicly, and no data-region/hosting-location disclosure was found - relevant for any EU customer considering this tool.
    • Brand identity note: the product operates under two live domains and two legal-entity names in its own policies (VidyoAI Ventures Pvt Ltd historically; Vidyoai Internet Ventures, Inc. currently for quso.ai) - both confirmed as the same product family via the vendor's own FAQ ('Is vidyo.ai now quso.ai? Yes...'), so this is a rebrand, not a conflation risk, but should be noted in the listing.

    // At a glance

    Pricing model

    Subscription tiers (marketing page cites a ~$49/mo bundled-value comparison against competitor tools); free trial with limited credits.

    Self-hostable

    No

    // How we verified this

    Every certification marked HELD is confirmed against a verbatim quote on Vidyoai Internet Ventures, Inc. (operating quso.ai, formerly vidyo.ai; legacy entity VidyoAI Ventures Pvt Ltd)'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.

    Last verified 2026-07-09. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.

    quso.ai

    > Browse all vendor trust reports