TABLE OF CONTENTS
Our priority is ensuring that the data you capture on devices as well as store on our platform is as secure as possible. To this end, our platform utilizes several key technologies to provide a high level of secure access and data protection.
On Devices
On devices, we use AES 256 encryption keyed by the user's password to ensure the user's core information is kept secure. All access to the app is through the user's password - no public or anonymous login is supported. We never store the user's password, meaning that if a user forgets their password the only option is to reset it with a new randomly-generated one. Images or media captured by the user on the app is moved into the app's secure area, thus preventing sensitive media from being found in publicly-accessible galleries or other such areas on the device. All data captured is stored in the app's secure area on the device, thus ensuring that there is no publicly accessible record of your user's work.
Communications
We use 256-bit Secure Socket Layer (SSL) communications to transfer data between the app and the web platform. This is a comparable, if not higher, level of security to that found on internet banking websites, ensuring that data is not compromised when being moved across open networks.
Servers
By default, our platform uses the same 256-bit SSL communications for any user logging into the secure website. Our data integration APIs are also secured in this way. All authentication on the platform requires username & password in order to gain access. Once logged into the site, data visibility is controlled by you - simply set up permissions and user groups on the platform to control what your users can see on the platform.
Our Cloud service runs on Microsoft's Windows Azure cloud platform, across 2 independent platform nodes - USA and Europe. Your account and all data will normally be located on the closest of these nodes by geographic longitude.
Our US node is hosted in Azure's US East (Virginia, USA) data center, with geo-replication to Azure US West (California, USA) for redundancy.
Our EU node is hosted in Azure West Europe (Amsterdam, Netherlands), geo-replicated to Azure North Europe (Dublin, Ireland).
Windows Azure runs in geographically-dispersed data centers that comply with key industry standards, such as ISO/IEC 27001:2005, for security and reliability. They are managed, monitored, and administered by Microsoft operations staff that have years of experience in delivering the world’s largest online services with 24/7 continuity. For more information, see:https://www.microsoft.com/en-us/TrustCenter/Security/AzureSecurity For encryption at rest, the server uses "Server-side with service-managed key" Azure option exclusively across all services. For databases, Transparent Data Encryption, again with service-managed keys is utilized. For more information, please see this article for Microsoft Azure:
https://docs.microsoft.com/en-us/azure/security/fundamentals/encryption-atrest#encryption-at-rest-in-microsoft-cloud-services
Support and Maintenance of Your Data
Our team does not monitor or cache your data unless you ask us to - either through support or maintenance requests/tasks. We comply strictly to our privacy policy and at all times we strive to ensure that our actions keep your data confidential.
If In Doubt - Hire us to host your data in a private, single-tenant area on Microsoft Azure
We understand that for some clients, hosting in a multi-tenant environment is not optimal. To accommodate this, we offer a managed single-tenant server service in any Microsoft Azure data center except China. This is truly the best option for any data-sensitive organization. We provide custom apps that are coded to communicate directly with this private single-tenant installation, forming a closed loop that ensures you have full control over your data at all times.
Contact us for more information!
Related Articles
Repeating Data
TABLE OF CONTENTS Using the Repeat Rows Approach REPEATROW rows outputting out of order Advanced Use: Outputting multiple repeats per row Using the Repeating Sections Approach Advanced Use: Outputting multiple repeats per section Nested Repeats ...
Pushing/Pulling Data To/From Other Systems
One of the key features of our platform is the ability to "push" and "pull" data between the platform and other systems and services. This enables you to build apps and functionality that feature live business data. Examples of this can be jobs, ...
Advanced Column Settings for Data Sources
To help control how the Data Source filters and rows display across your apps, our platform provides advanced column configuration functionality. This functionality is accessed via the Data Sources -> Rows page in the secure website; simply click on ...
Showing Data Source Rows on a Map (Mapping Screens)
The Mapping screen type provides the ability to display Data Source rows as map pins on a full-screen map in your apps. We’ve added customization options such as control over pin colors, callout display and user interactions to enable dynamic ...
Best Practices- Data Sources
When using data sources, there are efficient and inefficient ways of structuring, binding, and storing your data. However, we'll focus on efficient usage by establishing a few basics, how to structure your data, and best practices for specific ...