Security Doc

Security

Confidentiality, integrity, and availability of data is of the utmost importance to OSHA300.com, as is maintaining trust and confidence. OSHA300.com is delivered from a cloud computing platform with high availability and reliability to enable customers to focus on the work at hand. In order to provide end-to-end security and end-to-end privacy, OSHA300.com builds services in accordance with security best practices. Below are lists of key security features we’ve implemented:

Web Security

Take assurance that your data is secure and encrypted at every level of the OSHA300.com architecture. Data is never exposed while in transit or at rest on the backend.

• All web traffic is encrypted over HTTPS (SHA-256 with RSA Encryption)
• Backend datastore is encrypted at rest.
• Passwords are hashed and salted

Server Security

The OSHA300.com server architecture runs in industry leading cloud infrastructure that features state-of-the-art physical security, data and network security, and procedural security and compliance. Great efforts have been taken to eliminate single-points-of-failure in the architecture and to ensure redundant storage of data. This allows OSHA300.com to provide high levels of service availability and data security to its customers.

• All data stored in USA
• State-of-the-art physical security, data, network and procedural security, and compliance provided by our industry-leading cloud provider
• Central data is secure and inaccessible from any public source
• All traffic to server is encrypted end-to-end
• Passwords are hashed and salted
• Data is partitioned and inaccessible to other accounts