Security Information

  • Application
  •  
  • The PenguinData web application is designed to be secure.
  •  
  • Strict access controls allow users to view only the data they have been given access to.
  • All client databases are completely separate, preventing any data from being accessed from a different domain.
  • No data from any database can be accessed without a valid username and password, and each client's user list is unique and separate.
  • All transactions occur over an SSL v3 connection, preventing malicious eavesdropping of any connection.
  • All database transactions utilize parameterized queries, eliminating the threat of SQL injection.


  • Datacenter
  •  
  • Physical server security is important to PenguinData
  •  
  • All PenguinData hardware is housed in a secure, climate controlled, SAS 70 Type II certified data center operated by VISI, Inc.
  • Access to the facility requires three factor authentication.
    • A proximity card is required to enter the datacenter lobby.
    • Photo ID is verified by on site security.
    • Entering of a PIN, followed by a palm print scan, is required for datacenter entry.
  • The datacenter is monitored 24/7 by onsite security.
  • Click here for more information about this facility.


  • Security Monitoring
  •  
  • The security of this host is monitored daily
  •  
  • This host and the PennguinData application is scanned daily by Network Solutions nsProtect™ for vulnerabilities.
  • Click on the seal below for more information.