Security

Protecting Your Data 24/7/365

We know our customers take their web security seriously.  So do we.  Our system is housed in an SSAE-16 compliant, Michigan based data center which is staffed 24/7/365 by Level 3 Technicians.

SSAE 16 badge

 

On-site Security

Specialized electronic security systems control access to the data center and are accompanied by a full complement of motion detecting security cameras which monitors the entire facility at all times. Our data centers’ external walls are reinforced poured concrete and the building and grounds are patrolled regularly by an on-site security officer, our fully managed facilities have highly trained technicians on-site 24 hours a day, providing an incredibly fast incident response time.

 

Redundant Systems to Support Our Hosting Infrastructure

Everything from the design and security of the buildings to the network, power and cooling infrastructure the data center utilizes was carefully planned with full redundancy in mind, providing our customers with the highest quality experience.  The data center's multiple generators and UPS systems feature N+1 redundancy and the generators are load banked twice a year.

 

Tier-1 Premium Bandwidth

Providing the highest quality Internet connectivity and performance is a priority. The data center's selected Tier-1 bandwidth providers ensure minimal latency and fast connections to all points of the global internet.  They are proud to feature direct connectivity with Cogent, Level3, Verizon, and Comcast.  Their aggregate connectivity reaches an astounding 8,500 plus networks that are just a single network away from our uplinks.

 

Data Center Infrastructure Details

Power System

  • Expandable 13,500 kVA Utility Power Feeds
  • Multiple ASCO Closed Transition Bypass Isolation Transfer Switches
  • Multiple N+1 Generac Diesel Generators
  • Multiple N+1 Powerware 9395 550 kVA UPS systems
  • Liebert & Eaton Power Distribution Units
  • Multiple Service Entrance Feeds

Network Gear

  • Redundant Fiber Entrance Expandable to 1,840 Gigabits Per Second
  • Multiple Redundant Gigabit Ethernet Links to Data Center 1 and Data Center 2
  • Fully Redundant Cisco 6509 Sup720 and Nexus 7000 Distribution Switches
  • Redundant Gigabit Ethernet Links to Each Rack Switch
  • Cisco 4948 48-Port 10/100/1000 Rack Switches

Cooling

  • Multiple Liebert 20, 22, 30 and 45 Ton upflow and downflow AC Units
  • Stand-alone HVAC systems that don't allow for large scale failure
  • Designed For Addition of Air-Side Economization

Security

  • 24/7/365 Manned Facilities
  • CCTV Security Cameras Covering Inside, Outside and All Entrances of Data Centers
  • Site Entrances Controlled By Electronic Perimeter Access Card System
  • Sites Remotely Monitored By 3rd Party Security Company
  • Entrances Secured by Mantraps with Interlocking Doors
  • SSAE-16 & HIPAA Compliant, Safe Harbor Certified

 

Your data is safe

We use banking level encryption every time data is moved to and from our server.  While we still do nightly backups, we also do instantaneous, offsite backups. Every new data element such as text, files or pictures that are uploaded, deleted or changed is instantly backed up. That means if our system ever suffers a catastrophic hardware failure, we don't have to restore from the prior night's backup. We are able to restore the site as it was the instant before the hardware failure occurred.

 

Virus don't stand a chance

All uploaded files are scanned for malware and viruses.  In addition, routine, proactive virus and malware scans are run.  In the event a virus or malware is discovered, an onsite cleanup and remediation team is instantly notified and resolves the issue.

 

Additional Security

✔  Firewall Protection
✔  HTTP Intrusion Protection
✔  Server Hardening
✔  Daily Security Audits
✔  Disable Root FTP Access
✔  Daily CXS Scan
✔  Monthly Nessus Vulnerability Scans
✔  Web Server & PHP Hardening
✔  Secure Temporary Directories
✔  Enhanced Website Log Retention
✔  SSH / cPanel / FTP Hardening

 

Team level data security

Data within FosterCare.Team is locked down at the team level.  You can only see the teams you have access to.  The only way to get access to a team is to (1) create a team, (2) be a supervisor of someone who created a team or (3) be invited to join a team by the team administrator.  That's it.  If you don't have access to the team, not only do you not have access to the team's data, you can't even see the team on our platform.

 

Security access within a team

We even offer security within a team that allows posts, photos, discussions, files, etc. to be seen by only selected team members.  This allows a counselor to upload a document that is only visible to the case manager. 

 

Workflow and digital signature security

Our workflow and digital signature solutions support the following US legal and regulatory standards:

✔  Health Insurance Portability and Accountability Act of 1996 (HIPAA)
✔  E-SIGN Electronic Signatures in Global and National Commerce Act
✔  UETA Uniform Electronic Transactions Act (State law)
✔  Part 11 of Title 21 of the Code of Federal Regulations (CFR)
✔  SEC / NASD Electronic Signature and Records Standards (Brokerage)
✔  Federal Reserve/OCC Electronic Records Standards
✔  GPEA Government Paperwork Elimination Act
✔  Department of Education Standards for ESignatures in Electronic Student Loan Transactions
✔  DoD Support for DoD PKI and Common Access Card Program
✔  IRS Electronic Signature Requirements