Frequently Asked Questions on TimeSolv’s Data Security

This section details of frequently asked questions on TimeSolv’s security and data infrastructure.

No Question Response

1

What infrastructure is used for hosting the application and the website? TimeSolv is hosted by a state-of-the-art data center provided by Amazon Web Services (AWS). Highly encrypted 128-bit SSL is used for data transmission between your browser and our data center.

AWS has completed SAS 70 compliance and a Type II Audit, as well as being ISO 9001 certified. Add that we’re PCI DSS compliant to the mix, and you can rest assured your data is completely protected.

Security, however, isn’t everything. Our customers demand reliability. So here at TimeSolv, we also use a state-of-the-art agile development environment in order to provide you with almost 100% uptime.  To see for yourself, check out a report on our site by Pingdom, a third-party monitoring service. Or, just take a look below.

For redundancy, the public facing website is hosted with a managed service high availability hosting provider.

2

Is TimeSolv PCI (Payment Card Industry Data Security Standard) compliant? TimeSolv is PCI compliant with security audit and compliance certified by SecurityMetrics, https://securitymetrics.com .

3

What mechanisms are in place to ensure that only authorized personnel will be able to access your data? All passwords are encrypted and TimeSolv employees do not have access to passwords to access production data.Data center access is strictly limited to technical staff. Electronic security systems control data center access and are accompanied by a full complement of motion detecting security cameras which monitor the entire facility. Data Center facility external walls are reinforced poured concrete. Data centers are a fully managed facility, which means we have level 3 technicians on site 24 hours per day.

4

Does the contract address confidentiality? Yes, the customer contract includes terms of service agreement addressing confidentiality of customers’ information. See TimeSolv’s Privacy Statement at https://timesolv.com/privacy.html

5

How frequently are back-ups performed? Onsite backups are performed in near real-time with maximum delay of 5 minutes on a redundant database server.  Offsite backup are performed automatically every day with Amazon.com on the west coast.  In addition, TimeSolv provides automated daily backup via the Automatic Data Export services.

6

Is data backed up to more than one server? Where are the respective servers located? Will data always stay within the boundaries of the United States? Onsite backups are performed in near real-time at the data center with maximum delay of 5 minutes on a redundant database server.  Offsite backup are performed automatically every day with Amazon.com on the west coast.All data is kept within the United States.

7

How secure are the data centers where the servers are housed? Data center access is strictly limited to technical staff. Electronic security systems control data center access and are accompanied by a full complement of motion detecting security cameras which monitor the entire facility.  Data Center facility external walls are reinforced poured concrete.

8

What types of encryption methods are used and how are passwords stored? Is your data encrypted while in transit or only when in storage? 128 bit SSL for all data transmission and password storage.  Data is encrypted while in transit.

9

Are there redundant power supplies for the servers? Amazon AWS is a highly available, distributed cloud computing platform with the redundant power sources.

10

Does the contract include a guarantee of uptime? How much uptime? TimeSolv is open to signing a guaranteed uptime and compensation due to unexpected period of downtime.  TimeSolv’s historical uptime exceeds 99.99%.

11

If a natural disaster strikes one geographic region, would all data be lost? Are there geo-redundant backups?
  • Offsite backup are performed automatically every day with Amazon.com on the west coast.
  • Client can also receive copy of their data in CSV (Comma Separated Values) format via Automatic Data Export service at $19.95/month every day to backs up on their own servers

12

If there is a data breach, will you be notified? TimeSolv has not experienced a data breach.  Customers will be notified in case of data breach.

13

What rights do you have upon termination? TimeSolv does not hold hostage any of client’s data.  All data is available for download with a built-in option as CSV files.  TimeSolv is open to providing a contract with specific service levels to meet client’s needs.

14

Can we back up data locally? Each client can back up their data as a compressed file with an included data download utility.  TimeSolv doesn’t hold data hostage to resolve billing disputes.  Client can also receive copy of their data in CSV (Comma Separated Values) format via Automatic Data Export service at $19.95/month every day to backs up on their own servers.

 

Related Post