343
edits
Changes
no edit summary
''Consumer data, and the assets storing or processing it, should be protected against physical tampering, loss, damage or seizure.''
As the client data we store is held in Sungard's secure Parkwest facility in our database servers. The processes and procedures for SunGard facility entry include a sign in/sign out policy so unauthorised individuals will not be permitted access to our servers. A visit/call to SunGard can only be authorised by four members of our staff. Our data is stored in this secure facility which means we are able to mitigate against tampering, loss, damage or seizure. We also utalize BitLocker encryption on our database servers so client data is encrypted(256-bit key). We are also fully compliant with the Irish data protection act and client data is deleted once it is older then our back-up storage scope.-
[http://www.bxpsoftware.com/wixi/index.php?title=Data_Protection_and_Data_Retention Data Protection and Data Retencion]
''Access to all service interfaces (for consumers and providers) should be constrained to authenticated and authorised individuals.''
All n One utalises the latest in TLS technology to provide out clients with the most secure login possible. By utalizing Google's password strength meter API we also have the ability to reject passwords not considered to be "Best" by Google's standards. We also provide the ability to lock down login attempts to only be successful from a particular IP of range of IP's. In order for All n One to manage our hosted servers we have created a secure encrypted VPN connection with SunGard AS. The office in which the operations team work on bxp software developement is also fully secured with the latest intevo security system from Kantech which was installed by ADT. - [http://www.bxpsoftware.com/wixi/index.php?title=Bxp_-_Ballymount_Security Ballymount security]