
	THE RISK Risk Forces Recent Examples Approaches PRODUCTS Document Retention Litigation Readiness Legal Hold Management IP Control CUSTOMERS Case Studies Podcasts Industry Recognition TECHNOLOGY Platform Architecture Digital Thread Open XML - Ecma SUPPORT & SERVICES Support COMPANY Overview Executive Management Investors Employment Headquarters NEWS & EVENTS In The News News Releases Events Partnerships


	Product Overview


	Features


	Benefits


	How it Works


	Security


	home		products		Document Retention		security

NextPage Security Database

State-of-the-art Security

NextPage provides state-of-the-art security for our software service to ensure that your data is never compromised. We understand that security is crucial to you and we consider security a top priority. We spend our time and resources to make sure our security infrastructure protects your information.

Security Measures

In addition to our solid security infrastructure, we also provide:

	Experienced, professional engineers and security specialists dedicated to data and systems protection

	Continuous deployment of proven, up-to-date security technologies

	Ongoing evaluation of emerging security developments and threats

	Complete redundancy throughout the infrastructure

	Total commitment to a secure, scalable, private, collocated system


Security	Description
Physical Security	Our production equipment is collocated in the Greater Salt Lake City, Utah area at a facility that provides 24-hour physical security, fingerprint and picture identification systems, redundant electrical generators, redundant data center air conditioners, and other backup equipment designed to keep servers continually up and running.
Perimeter Defense	The network perimeter is protected by the latest, industry-leading firewall systems at multiple levels of the service to protect customer data and to ensure only authorized uses of the NextPage service. In addition, NextPage monitors all systems with automated alerting and notification to proactively ensure security throughout our architecture. NextPage contracts with a third party security firm that provides regular security penetration testing and auditing for increased assurance against the latest threats.
Data Encryption	The level of encryption for all encrypted services is 128-bit encryption. Encryption is primarily used for SSL traffic used as part of the service as well as for all VPN connections from the NextPage facilities for remote administration and access. All communications to/from the NextPage corporate facilities are fully encrypted by at least 128-bit encryption.
User Authentication	On first install clients are verified through a secure public and private key interaction. The clients then transfer all data to the NextPage Global Service via SSL over HTTPS.
Application Security	Our application security model completely separates customer data. This security model ensures that a customer will only have access to their data.
Internal Systems Security	Inside of the perimeter firewalls, the systems are safeguarded by network address translation, port redirection, non-routable IP addressing schemes, and more. The specific details of these features are proprietary.
Operating System Security	NextPage has tight operating system-level security by only enabling a minimal number of access points to all production servers. We protect all operating system accounts with strong passwords and other authentication mechanisms. All operating systems are maintained at each vendor's recommended patch levels for security and are hardened by disabling and/or removing any unnecessary users, protocols, and processes.
Database Security	Whenever possible, database access is controlled at the operating system and database connection level for additional security. Access to production databases is restricted to a limited number of points, and each customer’s data is stored in a separate database.
Server Management Security	All data entered into the NextPage Global Service by a customer is owned by that customer. NextPage employees do not have direct access to the production equipment, except where necessary for system management, maintenance, monitoring, and backups. NextPage does not utilize any managed service providers. The systems engineering team provides all system management, maintenance, monitoring, and backups.
Reliability and Backup	All networking components, SSL accelerators, load balancers, Web servers, and application servers are configured in a redundant configuration. All customer data is stored on a database served by a database server cluster for redundancy. All customer data is stored on carrier-class disk storage using a SAN and multiple data paths. All customer data is automatically backed up to a primary tape library on a nightly basis.
Disaster Recovery	NextPage uses multiple levels of data protection to guard against data loss and to aid in rapid recovery in the event of a disaster. All customer data is backed up to disk. One level of disk backup is stored onsite and the other disk backup system is located offsite and is stored on a SAN, which provides additional levels of redundancy and quick recovery features. The disk backup is then backed up to tape, which is regularly sent to an offsite storage provider. The NextPage offsite storage provider houses the tape backups in a secure, fire-proof, granite vault.