How secure is my data?

Introduction

 

iTechnology Africa Pty Ltd, headquartered at 57 Kelkiewyn Street, Monument Park, Gauteng, South Africa, company number 2020/643853/07, are the owners and operators of the iForms.Africa service.

Our priority is ensuring that the data you capture on devices, as well as stores on our platform, is as secure as possible.

To this end, our platform utilises several key technologies to provide a high level of secure access and data protection.

 

 

On Devices

 

On devices, we use AES 256 encryption keyed by the user's password to ensure the user's core information is kept secure.

All access to the app is through the user's password - no public or anonymous login is supported.

We never store the user's password, meaning that if a user forgets their password the only option is to reset it with a new randomly generated one.

Images or media captured by the user on the app is moved into the app's secure area, thus preventing sensitive media from being found in publicly accessible galleries or other such areas on the device.

All data captured is stored in the app's secure area on the device, thus ensuring that there is no publicly accessible record of your user's work.

 

 

Communications

 

We use 256-bit Secure Socket Layer (SSL) communications to transfer data between the app and the web platform.

This is a comparable, if not higher, level of security to that found on internet banking websites, ensuring that data is not compromised when being moved across open networks.

 

 

 

 

 

 

 

 

 

 

 

 

 

On Servers

 

By default, our platform uses the same 256-bit SSL communications for any user logging into the secure website. 

Our data integration APIs are also secured in this way.

All authentication on the platform requires a username & password in order to gain access.

Once logged into the site, data visibility is controlled by you - simply set up permissions and user groups on the platform to control what your users can see on the platform.

 

Our Cloud service runs on Microsoft's Windows Azure cloud platform hosted in Azure West Europe (Amsterdam, Netherlands), geo-replicated to Azure North Europe (Dublin, Ireland).

(Plans are afoot to get hosting in the Azure, Cape Town, South Africa Data Centre within the next 6 months)

 

Windows Azure runs in geographically dispersed data centers that comply with key industry standards, such as ISO/IEC 27001:2005, for security and reliability. 

They are managed, monitored, and administered by Microsoft operations staff that have years of experience in delivering the world’s largest online services with 24 x 7 continuity.  For more information, see:

https://www.microsoft.com/en-us/TrustCenter/Security/AzureSecurity

 

For a full list of Azure's compliance with security and privacy certifications, choose "Azure" from the Services drop-down at the following link:

https://www.microsoft.com/en-us/trustcenter/Compliance

 

 

 

 

 

 

 

 

 

 

Support and Maintenance of Your Data

 

Our team does not monitor or cache your data unless you ask us to - either through support or maintenance requests/tasks.

We comply strictly to our privacy policy and at all times we strive to ensure that our actions keep your data confidential.

 

 

If In Doubt - Host Our Platform on Your Own Servers

 

We understand that for some clients, even the guarantees provided by Microsoft and our best efforts are not sufficient to meet stringent corporate or government requirements.

To accommodate this, we offer a server-installable version of our platform that you can host on your own infrastructure and systems.  

This is truly the best option for any data-sensitive organisation as our cloud service is not involved in any way with your data.  

We provide custom apps that are coded to communicate directly with your server installation, forming a closed loop that ensures you have full control over your data at all times.

All you need is a Windows Server and SQL Server to get up and running.

 

Contact us for more information!

 

 

  • 0 Users Found This Useful
Was this answer helpful?