Your Data is Secure While in Transit
All interactions with Fidelius occur over an encrypted channel. We employ SSL to protect your documents, passwords, and interactions with Fidelius from eavesdropping.
Your Data is Secure While at Rest
Fidelius encrypts your documents and all information stored in our databases at rest. The data is encrypted using AES-256.
How Your Data is Stored
Fidelius is designed to allow access to documents via authenticated logins. In other words, documents stored in Fidelius are only accessible if you log into the service, or share the documents with Keyholders that must log into the service and successfully request access. Fidelius employs an Event Log that you can use to review on a Vault by Vault basis:
- Who has been granted permissions to access documents?
- Who has actually accessed documents?
Additionally, Fidelius uses the Payment Card Industry (PCI) Data Security Standard (DSS) as an actionable framework to provide a robust security process. This standard is designed to protect credit card information; however, Fidelius employs this framework as a tool across all confidential information – including your documents. This framework provides us a security process that incorporates prevention, detection, and appropriate response to security incidents.
The PCI Security Standards Council provides more information regarding PCI DSS. Learn more >>
Fidelius hosts your data using services provided by Amazon Web Services (AWS).
Amazon Web Services are trusted and relied upon all over the world to provide highly secure and scalable infrastructure. Learn more about Amazon Web Services security here, including their System & Organizational Control (SOC) report.
Your Data is Securely Backed Up
Your documents and metadata are always stored using highly redundant replicated storage. Multiple copies of metadata and documents are stored in multiple geographical locations and backed up regularly to ensure data availability.
Your Role in Protecting Your Assets
Protecting your assets is a team effort between you and Fidelius, and we take this partnership very seriously. As such, we feel it is critical to help you do your part. Security is a tough balance between protection and efficiency. Just as military fortifications are very secure, they are hard to enter and exit. The additional procedures that secure the facility effectively slow down operations within. That being said, we want to provide you guidance on measures that you can take to improve your protection, and still meet your needs.
Here are some simple steps that every Fidelius user should employ:
- Protect your session by signing out of the service when not in use
- Use good password practices, such as:
- Using a strong password (lowercase, uppercase, numbers, symbols, etc.)
- Changing your password every 90 days
- Not using the same password you use at other sites or other computers
- Not sharing your password with anyone, including Fidelius employees. (Fidelius employees are never allowed to ask you for your password.)
Further, we encourage our customers to assess their own, individual data protection needs. For example, if you require additional data protection beyond what the Fidelius service provides, you can use third-party encryption systems to encrypt documents before storing them in Fidelius.