Security and Infrastructure
Ethixbase360 is committed to keeping your data safe and that journey starts with our commitment to privacy and compliance. We strive to ensure our systems are secure and preserving the confidentiality and availability of your data is our highest priority.
We ensure the privacy and the security of our storage systems with role-based access and multi-factor authentication. We follow the principle of least privilege, authorizing access to System Administrators only where required. Access and authorization is reviewed quarterly in line with leading security standards such as ISO 27001.
We vet all of our vendors for their privacy and security compliance procedures during our vendor assessment process. Ethixbase360 adheres to the EU and UK General Data Protection Regulations (GDPR) and maintains contractual relationships with our vendors to ensure they do too, from agreements and privacy policies to compliance programs.
Network security is a crucial piece to establishing trust and our Web Application Firewall identifies and prevents attacks against our internet-accessible applications. Ethixbase360 adheres to sound architectural design practices. Our well-defined network topology with a distributed server architecture ensures that data and application logic remain separate.
Our commitment to security extends from the network to applications. Vulnerability and penetration tests on a regular basis, account creation confirmation, OWASP-based coding guidelines and password complexity rules, and other security features all contribute to our overarching security program.
Reliability and security are both important pieces to our overarching goal. Our system is hosted on Amazon Web Services (AWS) cloud infrastructure and able to take advantage of AWS high-availability zones, allowing for access to consistent and reliable service throughout the year.
Compliance is a crucial part of any industry and we work to preserve the privacy and security of our data through all appropriate technical possibilities. Ethixbase360 strictly adheres to the GDPR framework.
ISO 27001 Information Security Management System Certification
Ethixbase360 maintains policies and procedures in-line with the ISO 27001 standards. This includes security practices, as well as data center resiliency and disaster recovery procedures for business-critical data and processing functions. Ethixbase360 tests these annually in accordance with ISO 27001 requirements.