The security, privacy, and confidentiality of your Personal Information are of the utmost importance to us.

 

Physical Security

LifeBinder's technical infrastructure and systems are hosted at SOC 3 accredited data centers. Physical security controls at our data centers include 24x7x365 surveillance at a manned facility, restricted by card access, cameras, visitor logs, entry requirements. SSAE-16 & HIPAA Compliant, Safe Harbor Certified.  All of our data resides in the USA.

Access Control

LifeBinder's technology resources are secured through encrypted connectivity (VPN, SSH).  Application access is granted on a need-to-know basis of least privilege.  The physical access to our systems are secured by multiple levels of security controls.   

Encryption

LifeBinder uses multiple levels of encryption.  When you visit our website, we require the use of a secure browser with encryption.   Information is secured with encryption while in transit as well as when stored.  LifeBinder forces HTTPS for all services using TLS (SSL), including our public website and the LifeBinder application.

Data in Transport:  Transport Layer Security (TLS) encryption (also known as HTTPS) for all transmitted data. 

All sensitive data is encrypted at rest with AES-256.  Data at Rest encryption is used when storing information. This data is not accessible without the proper cipher.  Only the application user can access their information or share their information with specified users.

2-Factor Authentication

In addition to a username and password, LifeBinder adds another security layer to the login process by offering 2FA.

Monitoring

LifeBinder regularly reviews activity logs to identify potential problems. Systems are in place to automatically block and help prevent unauthorized access to your information from unknown or untrusted sources.  Information collection, storage, and processing practices, including physical security measures, are used to guard against unauthorized access to systems.

Patches and Security Updates

We update our systems frequently and patch them.  We use the most recent security technology.

Compliance

LifeBinder systems are compliant with the Payment Card Industry’s Data Security Standards (PCI DSS 3.2).   We continue to meet all industry standards for Compliance.