At Fiix we know that our customers rely on us as a critical part of their business processes and record keeping. Security is an integral component of providing an accessible and reliable maintenance platform and we treat the security of our infrastructure as a priority one item.
Reliability of the Fiix Platform is measured by two components: (1) Security measures which consist of preventive measures to protect against intrusion and unauthorized access to data and (2) Recovery measures which consist of both preventive and recovery systems to ensure continuity of service in the event of a disaster.
I. SECURITY
SSL
All information travelling between your browser and the Fiix platform servers is protected from eavesdroppers with 256-bit SSL encryption. The lock icon in your browser lets you verify that you aren’t talking to a phishing site impersonating Fiix and that your data is secure in transit against unauthorized eavesdropping.
Firewalls
Fiix Platform’s VPC is is fully integrated with Amazon EC2 cloud, backed by EC2 standard Cisco-powered firewalls.
Fiix Platform VPC terminates all HTTPS access on internet facing load balancers. Application and database servers are not accessible via DMZ.
Intrusion detection
All traffic entering and leaving the Fiix Platform network is monitored by Amazon Security, as a standard service provided by Amazon EC2.
Fiix employs a second line monitoring to scan additional information on the usage of each CMMS account, and block unauthorized access to the Fiix platform on a per session level.
Encryption
Particularly sensitive information – credit card numbers, bank account information, and your payment gateway account details – are encrypted and handled by our payment gateway providers, PayPal and Stripe, both which are industry leaders in keeping financial information secure and are certified PCI level 4 for storage of sensitive data at rest.
Physical security
The Fiix VPC servers are located in state-of-the-art data centers within Amazon EC2 in multiple locations Canada, the USA and elsewhere. Each center is professionally managed by our primary provider, Amazon EC2 and their certified affiliates providing biometric access controls, constant surveillance, redundant power feeds and generators, robust fire suppression, and carefully monitored climate control to protect the servers that store your data, community accounts, and manage your Fiix CMMS.
II. RELIABILITY AND RECOVERY
Redundant servers and datacentres
The Fiix infrastructure uses redundant storage and servers that are professionally managed by Amazon to keep the Fiix Platform and your data available in the case of hardware failure. Additionally, the Fiix Platform implements hot fail-over architecture distributed across multiple VPCs comprising up-to-date application servers and storage in a geographically separate data centres in case their primary data centre is made unavailable by a disaster or other disruption.
Managed hosting
Fiix has chosen Amazon EC2 for our hosting needs. Amazon is an industry leader with many bluechip and Fortune 1000 companies as clients. Fiix carefully and confidently chose Amazon to provide the world-class performance and service demanded by our world-wide customers to safely and securely run their mission-critical Fiix CMMS asset management systems.
Backups for SaaS
The data in your Fiix CMMS system and account is replicated across multiple database servers in multiple geographic locations to prevent a single failure from causing data loss. Additionally, data is backed up nightly to tape and stored in a secure offsite location to ensure that, even in the event of a catastrophe like a fire, earthquake, tornado or flood, your information will be safe and your records can be quickly restored.
If you have any security concerns or questions on how Fiix implements security and disaster recovery strategies please contact our team.
© Fiix Inc. All rights reserved – Last Revised: November 1, 2017