Pipeliner implements and maintains thorough backup and data security practices. This article outlines those practices and procedures.
Data Center and Network Security
Technical Infrastructure and BackUp Procedures
Pipelinersales, like many SaaS providers, uses Amazon Web Services (AWS) for North America, Amazon Web Services (AWS) for Canada and Amazon Web Services (AWS) for Germany to host your cloud data. AWS has a wealth of security standards and backup recovery policies in place including ISO 27001 and ISO 22301. This provider includes security and backup standards for physical security, disaster recovery and monitoring.
North America — Virginia, USA
North America — Toronto, Canada
Europe — Frankfurt, Germany
APAC — Sydney, Australia
We also have a number of internal protocols to further enhance security and disaster recovery. Data between these servers are not shared or mirrored.
EXAMPLE: If you are a customer from US, your data stays in US or if you are a customer in Europe, your data stays in Europe.
Disaster Recovery Plans
We inherit the disaster and failover capabilities within the AWS environment. In addition to these, Pipeliner CRM has an internal mechanism for a secondary site to be available within 24 hours.
If necessary, you can recover your database to any point in time during the backup retention period of 35 days.
Internal Security and Protocols
Access is limited to senior members of the development team. Each member of the senior team has been with Pipelinersales for over 5 years and has significant experience in the co-location environments.
Cloud Data Security
For the secure transmission of data via the Internet to you, Pipeliner CRM is using the latest SSL (secure socket layer) technology. This way data is encrypted and securely transmitted to you.
Apart from encryption to secure data, Pipeliner CRM has a number of technical and organizational safety measures in place. These measures are continuously improved based on technical developments. Pipeliner CRM maintains a Firewall System based on the latest State of Technology, in order to protect itself from unwarranted outside access.
Amazon RDS encrypts your databases using keys you manage with the AWS Key Management Service (KMS). On a database instance running with Amazon RDS encryption, data stored at rest in the underlying storage is encrypted, as are its automated backups, read replicas, and snapshots. RDS encryption uses the industry-standard AES-256 encryption algorithm to encrypt your data on the server that hosts your RDS instance.
Encryption of Data in Transit
Encrypt communications between your application and your DB Instance using SSL/TLS. Amazon RDS creates an SSL certificate and installs the certificate on the DB instance when the instance is provisioned. For MySQL, you launch the mysql client using the –ssl_ca parameter to reference the public key in order to encrypt connections
A strong and safe 2048 bit cypher using SSL is used on all communications outside of the DMZ.
Compliance Certifications and Memberships
We implement security best practices to meet not just industry-based compliance. As a European company, Pipelinersales is working to be fully compliant with GDPR.
We know that security of your data is of top concern to you—and so it is for us as well. This white paper is being provided to give you a more detailed understanding of how we make your Pipeliner CRM data secure.