You can trust us to keep your data safe. We do everything we can to make sure that there is the smallest possible chance of any sort of data breach. In these days of ransomware and other malware attacks, your data may be safer in Chintaro Cloud than it would be on your own network.
This article addresses any concerns you may have about your data security.
TABLE OF CONTENTS
- Where is the data stored?
- Here's how we ensure your access is secure
- Here's how we protect the server environment
Where is the data stored?
All Chintaro data is stored on Amazon Web Services in Sydney.
Here's how we ensure your access is secure
Users can only access Chintaro Cloud via Parallels Remote Desktop which utilises SSL connections and 256-bit AES (Advanced Encryption Standard) encryption. This is a safe as it gets.
Each Parallels login's access to data is controlled by Windows Active Desktop, which is industry standard, and ensures that users can only access their own data.
Here's how we protect the server environment
As part of managing the Chintaro Cloud environment, our technicians need to access the servers using Remote Desktop Protocol. The remote address for each server can only be seen if the originating IP address is part of the "Whitelist" maintained as part of the AWS security environment. This means that only specific computers can see that the servers exist.
Each of these computers and each of the servers run Microsoft Advanced Threat Protection which constantly monitors activity looking for any unusual activity, and reporting it via email when it occurs.
This data is fed into a central dashboard, which is provided by our third-party security advisors, Fortian.
Fortian advise us of how best to address anything unusual, and we meet with them regularly to make sure that nothing is being missed.
Fortian also provides monthly vulnerability scans (penetration tests) on all of our servers, using their proprietary tools and methods. We receive a written report highlighting any areas needing to be addressed (usually software that needs to be updated to take advantage of the latest security patches).