DATA INTEGRITY
AND SECURITY

• Data Storage Practices
• Security of Physical Premises
• A-Check Staff Data Access
• Data Backup Practices
• Client Data Access

Data Storage Practices

A-Check America systems and onsite data backups are housed at the Corporate Data Center in Glendale, California. A co-location with a back-up T3 line and three diesel powered back-up generators is housed in Burbank, California. The secondary co-location is in Riverside, California.

See an overview of our Data center network architecture.

A-Check's co-location data processing facilities are SAS 70 compliant. A-Check web servers and client data are housed in a 24/7 secured facility, accessible only with biometric identification or direct supervisor clearance.

Client data is stored on a shared database and segregated by an assigned client account number. Our system uses ODBC and ODBC-JDBC to connect our database. It supports Sybase SQL server and MS SQL Server.

There is no public access to client data/information. Client/data information is in a SAN environment on a separate private network, accessible only by the application/system administrator. We implement firewalls, IDS, ACL, server hardening, NAT (firewall between IIS web server to SQL server), managed firewall and IDS security services.

The application unit and database unit both reside in DMZ zone in two separate servers with redundancy. Firewalls separate corporate computers and servers from the Internet. An Internet user does not have direct access to the database server. Only the application server has access to the database server.

All data is transmitted to and from the user under 128-bit SSL encryption. All stored system data is user ID and password protected. All users must have a separate user account and password and are encouraged to keep identification codes confidential. All user accounts use password-protected screen savers. No client data is allowed to be carried on a laptop, PDA, portable drive, and/or wireless devices.