Home > Privacy Policy > Service Security
Our goal is to provide the highest level of confidentiality, integrity and availability for customer data that CVi is responsible for. CVi does this using the following:
- Hosting customer data and applications in state-of-the-art data centers
- Utilizing hardware redundancy through clustering of data and application servers
- Implementing appropriate levels of encryption and secure protocols during file transmissions
- Utilizing appropriate authentication techniques and digital certificates and signatures
- Disallowing wireless or remote access into the customer network
- Providing unique databases and company codes for each customer
- Backing up all client data in a multi-stage, multi-site process to ensure that data is never lost
- Providing optional client use of a far-site data center for business continuity purposes
- Malware protection and automatic updates
- Pursing appropriate certifications, such as JIS Q15001 (Privacy Mark) and ISO 27001 (Information Security)
- Vulnerability assessments and periodic penetration testing
- Off-site tape migration of all customer data backups
- Rigorous physical and environmental security controls
- Automatic updates of all software and security patches
- Regular monitoring for security and operational incidents
- Optional customized infrastructure and backup strategies in a unique environment
- Standardized change control processes for modifications to SaaS applications
- E-mail site blocking and other techniques to avoid data leakage
- Firewalls, DMZs and proxy servers and other appropriate network security devices and techniques
- Trained staff ready to respond to and resolve any issues that may otherwise arise
- Digitization of any original papers documents created in support of our customers' reporting requirements
- External audits by certified professionals
An example of this commitment to our customers is shown through our Personal Information Protection Policy, which is located here. →CVi Security
