SECURITY & PRIVACY
Identification and communication
We are using encrypted HTTP traffic, SSL (Secure Socket Layer). You will be able to see that this encryption is being used by looking at the address field in your browser - when the address scheme starts with the letter combination https: / /, SSL is being used. SSL encryption uses RSA encryption as a standard for encryption of data communications systems.
The SSL functionality also includes a server certificate. The certificate is issued by an independent organization, Verisign. A server certificate can be used by the client to verify that the right system is being used.
Communication with the server is encrypted using a 128-bit long encryption key.
User Access
When the user is identified the information will be sent to Lotus Domino which is the application platform used for Team Engine. The Domino server has its own security architecture that provides facilities to limit the rights to various functions and data.
Each application consists of a database where access is restricted by an ACL (Access Control List). Only users listed in ACLen will have access to all or part of the database.
The administrator of an application can modify the ACL by adding and removing participants, and dividing different users into different access groups. The administrator can also choose to give other participants the right to administer ACLen.
Availability
To meet the need for availability around the clock, we have chosen to co-locate our computers in a secure data centre to ensure high availability.
The machinery includes spare machines that will come in to use during downtime.
Confidential Data Management
We establish a contract between us and our customers which includes a guarantee that no third party under any circumstances can gain access to the stored data.
