Security Policy
Physical Security
Amazon: Aculab Cloud is deployed on Amazon AWS. Amazon has many years of experience in designing, constructing, and operating large-scale data centres. AWS infrastructure is housed in Amazon-controlled data centres throughout the world. Only those within Amazon who have a legitimate business need to have such information know the actual location of these data centres, and the data centres themselves are secured with a variety of physical controls to prevent unauthorized access.
Service Security
Cloud Virtual Machines: Amazon's Virtual Machines are designed to be secure by default, and Aculab Cloud only opens ports and exposes services related to necessary functionality.
Web Services APIs: These can all be accessed via HTTPS. You provide your username and password, and Aculab Cloud performs authentication within the secure tunnel. For further information please view the security sections within the web services API documents.
UAS-Cloud connections: The UAS typically runs on the customer's site and communicates with Aculab Cloud in order to run applications. UAS downloads are shipped with appropriate certificates and, by default, use SSL for communication with the Cloud.
Data Privacy
Media file storage: Media files are stored in the Cloud. The underlying storage is Amazon S3. Each customer has access to only their own media files and call recordings, and these can be downloaded for storage locally. No customer has direct access to the underlying storage.
Media file encryption: Customers can choose to encrypt their media files before upload, and to have their media recordings on the cloud encrypted before storage. In both cases, the keys used are supplied by the customer app at runtime, and not stored by Aculab Cloud.
Payment details: If you elect to pay by card, payments are handled by a third party payment site, currently SagePay. Specifically, Aculab Cloud neither sees nor stores credit or debit card information.