We adhere to the highest security and data protection standards by using standard AWS-based SSL/TLS encryption on all of our websites and microservices. Any time sensitive data is stored in Backand’s platform, it is protected using industry data security standards, and when in transport encrypted via SSL/TLS. In order to keep your data safe, we regularly verify encryption algorithms and our security certificates.
Backand’s physical infrastructure is hosted and managed within Amazon’s data centers and utilizes Amazon Web Service (AWS) technology. Amazon’s data center operations have been accredited under:
- ISO 27001
- SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)
- PCI Level 1
- FISMA Moderate
- Sarbanes-Oxley (SOX)
For additional information see: https://aws.amazon.com/security
Backand’s processing engine is powered by virtual machines (VMs) hosted and managed within our AWS’ data centers, depending on your account settings.
All communication to the processing engine virtual machines is done over SSH.
For additional information see:
Amazon Web Services Security
Firewalls are utilized to restrict access to systems from external networks and between systems internally. By default, all access is denied and only explicitly allowed ports and protocols are allowed based on business requirements. Each system is assigned to a firewall security group based on the system’s function. Security groups restrict access to only the ports and protocols required for a system’s specific function. Host-based firewalls restict customer applications from establishing localhost connections over the loopback network interface to further isolate customer application. Host-based firewalls also provide the ability to further limit inbound and outbound connections as needed.