Are my documents secure on the cloud?

Are my documents secure on the cloud?

EisenVault secures your documents while in transit and while at rest on the cloud. We also have state-of-the-art mechanisms for access control, versioning, accountability and backup.

Security in Transit – SSL/TLS
  • SSL (Secure Sockets Layer) is a standard security technology for establishing an encrypted link between a server and a client—typically a web server (website) and a browser or mobile app; or a mail server and a mail client
  • SSL allows sensitive information such as documents, credit card numbers, login credentials to be transmitted securely
  • TLS is a successor to the SSL protocol

EisenVault uses 128-bit TLS 1.2 encryption

Banks and Government Agency websites typically use this technology for encrypting sensitive data during transmission.

Security at Rest – Data Store Encryption and Physical Security
  • Server-Side Encryption – EisenVault requests the server to encrypt your content before saving it on disks in its data centers and decrypt it when you download the content. Encryption used the 128-bit AES (Advanced Encryption Standard)
    • This protects your data in case of physical breach of the data center
    • Standard encryption used for protecting high-level government data
  • Operating System Security – EisenVault servers use modern CentOS Linux as their operating system
    • CentOS has a strong privilege-based security system which makes it among the most secure operating systems
    • Linux is inherently better protected than Windows against viruses and hacker attacks
  • Physical Security – EisenVault servers are housed in international Tier-1 cloud data centers with redundancy and physical security
    • 24×7 Power backup
    • Business continuity by replication of data across multiple storage locations, to mitigate risk of a natural disaster
    • CCTV, Fire Alarms, Key-Card Access, Security Policy & Training for authorized personnel
Access Control, Accountability, Versioning and Backup
  • 4-level Access Control– EisenVault by default offers 4 levels of access to documents. These can be customised further as per your requirements.
    • Manager – can view/edit/delete any document in the repository.
    • Collaborator – can view/edit/delete own documents. Can edit but not delete other users’ documents.
    • Contributor – can view/edit/delete own documents. Cannot edit or delete other people’s documents.
    • Consumer – can only view documents. Cannot create / edit / delete any documents.
  • Accountability– EisenVault maintains logs of all actions on documents.
    • Actions logged include: Creation, Versioning/Editing, Sharing, Viewing, Workflow Actions, Deleting.
    • Logs can be viewed by User Name or by Document.
  • Versioning – All document edits create new versions. You can always revert to an older version in case of changes made by mistake.
  • Backup – Entire repository content and properties are backed up daily. Disk and OS snapshots taken weekly.