resources

Frequently Asked Questions.

For a searchable list of over 100 questions and answers, or to request technical support, please refer to our dedicated support page. You may also be interested in the video tutorials on our YouTube channel.

General FAQs

  • XOGO was designed with simplicity and low cost in mind. Our player application runs on 12 platforms so you can turn almost any screen into a digital sign. Media players set up in seconds just by entering a PIN code. And we offer some of the lowest pricing in the industry - which includes free technical support, free software updates, and unlimited users on your account.

  • Absolutely. For example, your players might consist of a mixture of XOGO Mini Max players, BrightSign players and iPads running the XOGO Player app.  You can manage all of these players from anywhere in the world, just by logging into XOGO Manager.

  • XOGO Player supports static images (JPEG + PNG) video files (MOV + MP4), widgets, and URLs from the Internet (i.e. infotainment feeds, social media, PowerBI and more). Learn more about designing your content.

  • In our free version you can upload up to 15 library items and manage a single media player. Content is limited to 1080HD resolution, and advanced features like user-rights management are not available. Upgrade to XOGO Pro in order to deploy additional players, create unlimited content and playlists, play 4k content and access our full suite of features.

  • All XOGO customers receive free email-based technical support (in English, French and Spanish), handled by our teams in the US and abroad. Our average initial response time to support tickets is currently less than 90 minutes. You can file a support ticket here, via the chatbot in the lower right, or check out the short tutorial videos on our YouTube channel.

  • We sure do! If your organization needs to deploy more than 100 media players, and/or you’re interested to purchase 24 or 36-month software licenses rather than the standard monthly or annual licenses, please contact us to discuss our enterprise pricing tiers.

  • First plug in your XOGO Mini Max and connect it to the Internet. You'll see a PIN code on the connected TV screen. Now log into XOGO Manager on your computer, tablet or smart phone. Click +New to add a new player via its PIN code. Then assign your Mini Max a playlist, and in seconds your content is playing. Please see our Quick Start Guide for full instructions.

  • Absolutely. XOGO Player will cache your playlist so even if it loses Internet connectivity, your content will keep playing. The player only needs Internet connectivity when you initially set it up, and whenever you want to make changes to your content playlist. It also needs to be connected if you happen to have URLs in your playlist (i.e. news or social media feeds).

  • Of course! XOGO Mini Max was engineered around an ultra-reliable chipset and designed to run 24/7. If you need to reboot your device you can do so right from XOGO Manager. There’s even an option to have it reboot at a particular time every day.

  • XOGO Mini Max supports 60FPS at 1080 resolution or 30FPS at 4k resolution. It works in both portrait (vertical) and landscape (horizontal) mode so it can simply be plugged into any modern TV.

  • You can run any type of screen with XOGO - from TVs and tablets, to projectors and LED video walls. Your media player device just needs to have the correct output for the display that you want to use. For example, the XOGO Mini Max has an HDMI connection that can be plugged into any modern TV or projector. See this blog post for more information about choosing your screen hardware.

  • Yes you can! Essentially anything that can be viewed in a web browser can also be played in XOGO, as long as it’s not password-protected. When you click +New in the library section of XOGO Manager, instead of uploading a media file you can choose to paste in a URL instead. We highly recommend checking out the dynamic content feeds from our partners at Seenspire.

  • Absolutely! Video walls are visually stunning, and easier to set up than you might think. The best way is to use commercial-grade displays (i.e. NEC, LG or Samsung) that support tile matrix mode, so the displays can be "daisy-chained" together via HDMI or DisplayPort cables. In plain terms this means that your media player connects to display #1, then display #1 connects to display #2, and so on. The displays are smart enough to distribute the input from the media player across themselves, and it means that you only need a basic media player device to run your content.

    Alternatively, you can use a video wall controller device in between your media player and screens, to divide the signal equally among 2,3,4 or even up to 16 screens. These controllers have become much more affordable recently; some brands are availalbe for as little as $150 on Amazon.

    The content that you develop and load into XOGO for a video wall should be sized appropriately for the total resolution of the combined displays, so it doesn't get pixellated. For example if you were to mount two 1080p landscape displays on top of one another, your content would need to be 1920 pixels wide (the width of one display) by 2160 pixels tall (1080 + 1080 pixels stacked on top of one another). If this all sounds intimidating, please feel free to contact us and we'll be happy to talk you through it. We love this stuff!

  • XOGO is ultra-affordable, easy to set up and comes with free technical support. Users can get started with a free account and add more screens over time. Our XOGO Mini Max media player plugs into any TV and costs only $69.99. We’re also compatible with the industry’s top content providers, so you can pull in infotainment or social media feeds and put your screens on autopilot.

  • XOGO comes with enterprise features like single sign-on (SSO), user-rights management, advanced content-scheduling tools, and access to developer APIs. Our XOGO Pro plan offers free technical support and unlimited updates, users and content, all as part of the subscription. And we offer competitive enterprise pricing tiers, with discounts both for quantity and for longer-duration licenses.

  • For a searchable list of over 100 questions and answers, along with developer resources, please refer to our dedicated support channel or simply contact us via email.

Infosec FAQs

  • XOGO Decision Signage is built on Microsoft Azure’s Platform-as-a-Service (PaaS) and serverless architecture, leveraging Azure’s robust security infrastructure. Our closed-system design eliminates open APIs, reducing attack surfaces. Security is enhanced through encrypted communications, role-based access controls, and continuous monitoring via Azure tools.

  • Azure provides the backbone of XOGO’s infrastructure, delivering ISO27001-certified security, DDoS protection, and encrypted storage. XOGO inherits these best-in-class measures while implementing additional controls like strict access policies and a locked-down application ecosystem.

  • Our closed system restricts backend access to XOGO-developed applications only, preventing third-party interference. This enhances security by minimizing vulnerabilities, ensuring a controlled environment, and simplifying compliance for customers.

  • With a lean team of 17 people, XOGO maintains tight control over operations. All development is done in-house (except for Azure reliance), reducing third-party risks. Our small, senior team ensures accountability and rapid response to security concerns.

  • Reliability stems from Azure’s global redundancy, XOGO’s use of Azure Resource Management (ARM) templates for quick recovery, and partnerships with trusted vendors like NEC and SignageOS for hardware support.

  • XOGO conducts standard background checks, including reference verification, for all employees. Sensitive roles with privileged access undergo additional scrutiny to ensure trustworthiness and protect customer assets.

  • Employees receive general security awareness training, covering threats, risks, and best practices. Training programs are periodically reviewed to align with evolving security standards and XOGO’s Azure-based environment.

  • Privileged access is limited to a small, senior subset of our team. It’s managed through Azure Active Directory (AAD) with role-based access control (RBAC), ensuring that only authorized personnel can access critical systems.

  • Our team participates in periodic policy reviews and leverages external expertise (e.g., cybersecurity consultants) to stay informed on emerging threats, complementing Azure’s built-in security updates.

  • A compact, trusted team reduces complexity and risk. All members are hand-picked, senior professionals with clear roles, ensuring accountability and minimizing the chance of internal security lapses.

  • XOGO does not hold its own ISO27001 certification but relies on Microsoft Azure’s ISO27001 compliance. We align our practices with Azure’s certified frameworks to ensure a robust security posture.

  • Item deXOGO adheres to Azure’s security best practices, including PaaS/serverless architecture guidelines, TLS encryption, and closed-system principles. Our approach is informed by industry standards like NIST and CIS controls.

  • We can provide documentation of our security practices (e.g., RBAC policies, encryption standards) under NDA. Azure’s compliance certificates are available via Microsoft’s Trust Center.

  • Regular audits by consultants (e.g., quarterly audits agreed with Microsoft Teams) and adherence to Azure’s evolving standards keep XOGO aligned with industry benchmarks.

  • Access is restricted via Azure RBAC, limiting permissions to authorized personnel based on role. All activity is logged and monitored through Azure’s security tools for accountability.

  • XOGO enforces strict policies via Azure AAD, including least privilege principles, dual-factor authentication for sensitive access, and regular credential reviews to prevent unauthorized entry.

  • RBAC is configured in Azure, assigning permissions based on job function. Only necessary access is granted, enforced through AAD groups and policies, with oversight by XOGO management.

  • Remote access is limited to key personnel, secured with dual-factor authentication and Azure’s network controls (e.g., IP restrictions). Our closed system further blocks external intrusions.

  • Credentials are stored in Azure Key Vault, with access audited via Azure logs. XOGO reviews these logs regularly to ensure compliance and detect anomalies.

  • Data at rest is encrypted with AES-256 in Azure Blob Storage. Data in transit uses TLS 1.2 or higher, enforced across all XOGO services and customer endpoints.

  • Customer data resides in Azure’s secure cloud storage, protected by encryption and RBAC. Our closed system ensures only XOGO apps can access it, reducing exposure risks.

  • Decryption keys are managed by Azure Key Vault, accessible only to authorized XOGO personnel via RBAC. Keys are safeguarded with Azure’s hardware security modules (HSMs).

  • A closed system, RBAC, encryption, and Azure’s data loss prevention tools collectively minimize leak risks. Customer data isn’t stored beyond what’s needed for signage functionality.

  • Customers manage their own data deletion via XOGO Manager. Azure handles underlying storage disposal per its secure data destruction policies, ensuring no remnants remain.

  • XOGO relies on Azure’s network security, including firewalls, DDoS protection, and access controls. Our serverless design eliminates traditional network vulnerabilities.

  • All communications use TLS 1.2 or higher, enforced across endpoints like admin.xogo.io and api2.xogo.io. Azure’s encrypted environment secures internal traffic.

  • Azure’s DDoS protection shields XOGO services, backed by real-time monitoring and mitigation. Our minimal endpoint exposure further reduces attack surfaces.

  • Azure provides managed firewalls and IP restrictions. XOGO limits connectivity to specific URLs (e.g., xogo.blob.core.windows.net), detailed in our firewall documentation.

  • All communications use TLS 1.2 or higher, enforced across endpoints like admin.xogo.io and api2.xogo.io. Azure’s encrypted environment secures internal traffic.

  • Endpoints are restricted to XOGO apps, encrypted with TLS, and monitored via Azure Insights. Static IP ranges are available from Microsoft’s Azure IP list.

  • Customers are notified promptly per best practices, with timelines based on incident severity. Contact is via email or support channels, coordinated by our product team.

  • Azure Insights and AppCenter monitor for anomalies. Alerts trigger immediate review by our product team, with remediation leveraging Azure’s incident framework.

  • Azure provides detection tools (e.g., real-time logs) and infrastructure-level response. XOGO handles application-layer incidents, ensuring a layered approach.

  • Incidents are triaged by impact—security issues take top priority. Resolution follows Azure’s framework, with XOGO’s team addressing app-specific concerns swiftly.

  • Response plans are reviewed periodically with Azure’s tools. Key customers (e.g., Microsoft, Compass) conduct scans and quarterly audits refine our processes.

  • XOGO relies on Azure’s data centers, which feature industry-leading physical security (e.g., biometric access, 24/7 monitoring). We have no on-premises servers.

  • Azure data centers employ secure perimeters, cameras, guards, and restricted access. Details are available in Microsoft’s security documentation.

  • Microsoft conducts regular audits under ISO27001 and SOC 2, ensuring physical security meets global standards. XOGO inherits these assurances.

  • We evaluate key vendors (e.g., Microsoft) for compliance with security standards. Most operations are in-house, minimizing third-party reliance.

  • Only Microsoft Azure has infrastructure-level access. No other third parties interact with XOGO systems or customer data directly.

  • XOGO monitors Azure via service agreements and reviews partner practices (e.g., SignageOS updates) to confirm ongoing security alignment.

  • XOGO adheres to standard privacy practices and Azure’s compliance framework. Our privacy policy outlines data-handling commitments.

  • XOGO collects minimal data—typically just account admin contact info for marketing or support. No sensitive personal data (e.g., SSN, health info) is stored.

  • Data resides in Azure West and Central US data centers by default. Specific residency (e.g., Australia) can be discussed case-by-case with stakeholders.

  • Our privacy policy details data use and protection.. It aligns with applicable laws and Azure’s privacy standards.

  • Transfers occur within Azure’s secure environment. Compliance with cross-border regulations can be addressed per customer requirements.

  • XOGO uses Azure’s redundancy and ARM templates to rebuild environments quickly. Our PaaS design ensures minimal downtime.

  • Azure’s global data centers and backup systems enable rapid recovery. XOGO maintains database backups and service recovery capabilities.

  • RTO is minutes to hours, depending on the issue, thanks to ARM templates and Azure’s failover. Exact times vary by incident scope.

  • Plans are validated through Azure’s resilience features and updated with lessons from incidents or audits, ensuring continuous improvement.

  • Azure’s scale-up/scale-out capabilities and XOGO’s serverless design provide resilience, maintaining service under normal or adverse conditions.

  • Customers managing their own players must secure endpoints (e.g., patching, network security). XOGO Mini 2 devices are co-managed with partners.

  • Customers handle updates for their devices using XOGO-provided software (e.g., APPX, APK). XOGO manages XOGO Mini updates directly.

  • Allow outbound traffic over port 443 to XOGO URLs (e.g., api2.xogo.io). Full firewall details are in our documentation.