| Security Details |
Description |
| User
Application Security |
Worlddo
comes complete with the ability to give
every single user their own level of
access.
|
| Privacy |
Our
staff will NEVER use your data for any
reason whatsoever, now or at any time
in the future. See our Privacy
Policy for more information.
|
| Physical Security |
Our
production equipment provides 24-hour
physical security, picture identification
systems, redundant electrical generators,
redundant data center air conditioners,
and other backup equipment designed
to keep servers continually up and running.
We manage our own group of servers for
total control, configuration and maintenance.
See our Data
Center.
|
| Perimeter Defense |
The
network perimeter is protected by multiple
firewalls and monitored by intrusion
detection systems sourced from industry-leading
security vendors. In addition, Worlddo
monitors and analyzes firewall logs
to proactively identify security threats.
Worlddo also contracts with a third-party
security firm that proactively monitors
our security configurations for changes,
vulnerabilities, and errors and regularly
conducts threat assessments.
|
| Data Encryption |
Worlddo
leverages the strongest encryption products
to protect customer data and communications,
including 128-bit SSL Certification
and 1024-bit RSA public keys. The lock
icon in the browser indicates that data
is fully shielded from access while
in transit.
|
| User Authentication |
Users
access Worlddo only with a valid username
and password combination, which is encrypted
via SSL (optional) and MD5 hash encoding
while in transmission.
|
| Separate Databases |
Customers
never share database infrastructure.
Each customer has its own account on
your domain name, and its own MySQL
database.
|
| Database Security |
Access
to production databases is restricted
to a limited number of points. Worlddo
personnel agree to strict confidentiality
agreements and agree to be carefully
monitored to ensure that database security
is uncompromised.
|
| Application Security |
On
all deployment options, our robust application
security model prevents one Worlddo
customer from accessing another's data.
This security model is applied with
every request and enforced for the entire
duration of a user session.
|
| Internal Systems Security |
Inside
the firewalls, Worlddo is safeguarded
by network address translation, port
redirection, IP masquerading, non-routable
IP addressing schemes, and more. The
specific details of these features are
proprietary.
|
| Operating System Security |
Worlddo
enforces tight operating system-level
security by using a minimal number of
access points to all production servers.
We protect all operating system accounts
with strong passwords. All operating
systems are maintained at each vendor's
recommended security level and are strengthened
by disabling or removing any unnecessary
users, protocols, and processes.
|
| Server Management Security |
Worlddo
does not utilize any managed service
providers. The Worlddo systems engineering
team provides all system management,
maintenance, monitoring, and backups.
Worlddo employees do not have direct
access to the Worlddo production equipment,
except where necessary for system management,
maintenance, monitoring, and backups.
All data entered into the Worlddo application
by a customer is owned by that customer.
|
| Reliability and Backup |
All
networking components, SSL accelerators,
load balancers, Web servers, and application
servers are configured in a redundant
configuration.
|
| Disaster Recovery |
Worlddo
has disaster recovery plans in place.
If something should happen to the first
server, the second is always available
and data is available for speedy recovery.
|
Data Center