Security and privacy

Security

Protecting your data is of the highest importance to us.  The key elements of DCDR’s information security framework are as follows.

  • Role-based user access
  • Audit logs
  • Multi-factor authentication for DCDR admin
  • Managed user signups
  • Secure communications
  • Data virus scanning
  • At rest encryption
  • As-needed access to data centers
  • Distributed server grid and geo mirroring

DCDR servers are located in the US hosted and managed at an ISO/IEC 27001 and SOC-2 compliant facility.

Privacy Policy

Your privacy is very important to us. Accordingly, we have developed this Policy in order for you to understand how we collect, use, communicate and disclose and make use of personal information.

The following outlines our privacy policy.

  • Before or at the time of collecting personal information, we will identify the purposes for which information is being collected.
  • We will collect and use of personal information solely with the objective of fulfilling those purposes specified by us and for other compatible purposes, unless we obtain the consent of the individual concerned or as required by law.
  • We will only retain personal information as long as necessary for the fulfillment of those purposes.
  • We will collect personal information by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.
  • Personal data should be relevant to the purposes for which it is to be used, and, to the extent necessary for those purposes, should be accurate, complete, and up-to-date.
  • We will protect personal information by reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.
  • We will make readily available to customers information about our policies and practices relating to the management of personal information.

In summary, we only collect date in order to provide you with the services you request from DCDR and do not share this information with anyone.  In cases where publicly available trend reports or analysis are released, no identifiable information will be included in these reports.  We will destroy your data within a month of account closure unless required to retain information for a longer period due to local laws or regulations.

We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of personal information is protected and maintained.

 

Please contact us if you require additional information on our data security arrangements.