Ensure data security and compliance with IDrive® e2
Handling the processing of sensitive and personal data in compliance with security and privacy requirements is the top-most priority for businesses. IDrive® e2 is a secure and reliable object storage solution that incorporates robust measures for protecting the integrity, confidentiality, and availability of electronic information while ensuring regulatory compliance effectively. IDrive® e2 addresses the data security and privacy concerns and assists your company by employing the following measures:
- All electronic data, including account passwords and other sensitive information, is encrypted with TLS protocol during transfer.
- Two-factor authentication adds an extra layer of security, protecting against any unauthorized access.
- Strong server-side encryption for protecting objects while storing them in buckets.
- Detailed activity logs of your account are maintained for auditing and security purposes.
- S3 access keys for secure access of buckets and objects.
- Protection against data losses from malware and cyber-attacks with object lock, data retention, and versioning.
IDrive® e2 complies with industry and government standards and regulations:
SOC 2 Type 2
IDrive® e2 has proudly achieved SOC 2 Type 2 certification through a rigorous evaluation conducted by an independent third-party auditing firm. This certification validates that our S3-compatible cloud storage solution, as well as our policies and procedures, adhere to industry-leading standards for safeguarding customer data and account information. To obtain a copy of the SOC 2 Type 2 report, eligible customers, partners, and prospects are encouraged to reach out to IDrive® e2 Support. Your trust in our commitment to best practices is our priority.
The General Data Protection Regulation (GDPR) is a European Union regulation that is aimed at protecting the personal data of EU citizens. IDrive® e2 uses the best practices and technologies to ensure the highest standards of data security and privacy of personal data.
Businesses that handle cardholder information are required to comply with the Payment Card Industry Data Security Standard. IDrive® e2 is PCI compliant and it does not store any credit card information or financial data. IDrive® e2 uses third-party vendors to store and manage cardholder data and conduct online transactions.
SEC / FINRA
The Securities and Exchange Commission / Financial Industry Regulatory Authority, have instituted regulations that demand compliance surrounding the storage of financial records and electronic communications. Financial organizations can leverage the data immutability capability of IDrive® e2 to create immutable copies of files that comply with the SEC/FINRA guidelines.
Federal Information Processing Standards Publication (FIPS) compliance is a requirement for cryptographic products/software used in the USA. IDrive® e2 uses FIPS-approved encryption algorithms and adheres to physical security. It ensures the confidentiality and integrity of the data remains intact.
Data Center Security
Our data centers are SOC 2 Type 2 compliant. Your data is stored in enterprise-class data centers equipped with state-of-the-art facilities — custom-designed elevated floors, HVAC temperature control systems with designated cooling zones, seismically-braced racks — and advanced physical security features.