We take security very seriously and have developed a comprehensive set of practices, technologies and policies to help ensure your data is secure. Security is essential in working with customers’ information, Trujay team builds the service on effective and security-focused practices. This document outlines some mechanisms and processes that we have implemented to ensure robust protection of your business information.
Trujay security is concentrated in 4 different areas:
- Physical Security;
- Network Security;
- People Processes;
- Redundancy and Business Continuity.
Physical Security Layer
Our data centres are hosted on facilities that are protected by:
- We use Surveillance cameras for 24/7 monitoring of access routes and are video-monitored around all perimeter
- Entry is protected by electronic access control terminals and entrance is allowed via both transponder key and biometrics only
- Furthermore, it is protected from physical and logical attacks, and from natural disasters such as fires or floods.
Network Security Layer
Trujay network security team protects your data against the most sophisticated electronic attacks.
We use the best and proven practices of network security:
- network firewalls
- DDoS preventions (We use the latest hardware appliances and sophisticated perimeter security technologies, providing you with first-rate protection against large-scale DDoS attacks.)
- network posture assessment.
Application Security Layer
Our service provides you with HTTPS-encrypted communication, role-based authorization, and validation of all requests to ensure the security on the application level.
On a regular basis, we scan all systems to prevent any vulnerabilities. The software is constantly updated, so all connections to the previous version are limited, logged and checked.
We absolutely comply with your confidentiality and guarantee that all your CRM data is 100% secure before, during, and after the migration procedure. We take appropriate security measures to protect against unauthorized access to or unauthorized alteration, disclosure or destruction of data. These include internal reviews of our data collection, storage and processing practices and security measures, as well as physical security measures to guard against unauthorized access to systems where we store personal data.