World class security infrastructure
DocumentGENie provides state-of-the-art security to ensure that your customer data is never compromised.
At DocumentGENie, we know that security is crucial to you - that's why security is our top priority.
We devote significant resources to continually develop our world-class security infrastructure. The result: unsurpassed security and privacy for our customers' information.
With DocumentGENie, you enjoy protection and peace of mind. Among other security measures, DocumentGENie provides:
- Experienced, professional engineers and security specialists dedicated to round-the-clock data and systems protection
- Continuous deployment of proven, up-to-date security technologies
- Ongoing evaluation of emerging security developments and threats
- Complete redundancy throughout the entire DocumentGENie online infrastructure
- Total commitment to a secure, scalable, private, collocated system
DocumentGENie is as secure as the leading online financial services company. Configured by experts and rigorously tested before going into production, our world-class security infrastructure includes proven, up-to-date firewall protection, intrusion detection systems, SSL encryption, and other security technologies.
Our facility provides 24-hour physical security, palm print and picture identification systems, redundant electrical generators, redundant data centre air conditioners, and other backup equipment designed to keep servers continually up and running.
The network perimeter is protected by multiple firewalls and monitored by intrusion detection systems - all sourced from industry-leading security vendors. In addition, DocumentGENie monitors and analyzes firewall logs to proactively identify security threats. DocumentGENie also contracts with a third-party security firm that proactively monitors our security configurations for changes, vulnerabilities, and errors and regularly conducts vulnerability threat assessments including penetration tests.
DocumentGENie uses the strongest encryption products to protect customer data and communications, including 128-bit VeriSign SSL Certification and 1024-bit RSA public keys. The lock icon in the browser indicates that data is fully shielded from access while in transit.
Users access ProposalGENie only with a valid username and password combination, which is encrypted via SSL while in transmission. Users are prevented from choosing weak or obvious passwords. An encrypted session ID cookie is used to uniquely identify each user.
Our robust application security model prevents one DocumentGENie customer from accessing another's data. This security model is reapplied with every request and enforced for the entire duration of a user session.
Internal Systems Security
Inside of the perimeter firewalls, the systems are safeguarded by network address translation, port redirection, IP masquerading, non-routable IP addressing schemes, and more. The specific details of these features are proprietary.
Operating System Security
DocumentGENie enforces tight operating system-level security by using a minimal number of access points to all production servers. We protect all operating system accounts with strong passwords, and production servers do not share a master password database. All operating systems are maintained at each vendor's recommended patch levels for security and are hardened by disabling and/or removing any unnecessary users, protocols, and processes.
Whenever possible, database access is controlled at the operating system and database connection level for additional security. Access to production databases is restricted to a limited number of points, and production databases do not share a master password database.
Server Management Security
All data entered into the ProposalGENie application by a customer is owned by that customer. DocumentGENie employees do not have direct access to the DocumentGENie production equipment, except where necessary for system management, maintenance, monitoring, and backups. DocumentGENie does not currently utilize any managed service providers. The DocumentGENie systems engineering team provides all system management, maintenance, monitoring, and backups.
Reliability and Backup
All networking components, SSL accelerators, load balancers, Web servers, and application servers are configured in a redundant configuration. All customer data is stored on a database served by a database server cluster for redundancy. All customer data is stored on carrier-class disk storage using RAID disks and multiple data paths. All customer data, up to the last committed transaction, is automatically backed up to a primary tape library on a nightly basis. Backup tapes are immediately cloned to verify their integrity, and the clones are moved to secure, fire-resistant, off-site storage on a regular basis.
DocumentGENie has an agreement in place with a third-party provider of availability services to provide access to a geographically remote disaster recovery facility - along with required hardware, software, and Internet connectivity - in the event our production facilities were to be rendered unavailable. DocumentGENie has disaster recovery plans in place and tests them regularly.
Denial of Service Attack Attempts
The Genie network has a wealth of security measures and safeguards in place and is continually monitored to prevent any attempt of a denial of service attack.
Use of the DocumentGENie service is subject to the terms and conditions of the customer's subscription agreement with DocumentGENie. DocumentGENie may modify its security infrastructure and/or this security datasheet from time to time.