Does your disaster recovery plan protect sensitive information?
While selecting a disaster recovery plan for a business, security and privacy of data plays an important role. Storing complete backup records of all their electronic business transactions and maintaining confidentiality of sensitive user data is compulsory according to governing agency mandates. These industry-specific regulations to impose confidentiality, industry portability, and preservation of financial records is one of the motivating factors for many organizations to implement a data backup and recovery process.
Security measures in IDrive® Mirror which assists your organization meet the compliance mandate:
- SSL protocols are used by default to secure all communications.
- The industry-standard AES-256 encryption is used to securely transfer your data to the cloud and while at rest.
- Detailed activity logs of your account are maintained for auditing and security purposes.
- Point-in-time recovery ensures protection against data losses from malware and cyber-attacks.
- Your data is stored in world-class data centers featuring custom-designed raised floors, HVAC temperature control systems with separate cooling zones, seismically braced racks, and various physical security measures, to ensure its safety.
IDrive® Mirror cloud-based disk image backup compliant with industry regulations
-
SOC 2 Type 2
IDrive® Mirror has proudly achieved SOC 2 Type 2 certification through a rigorous evaluation conducted by an independent third-party auditing firm. This certification validates that our cloud backup and storage solutions, as well as our policies and procedures, adhere to industry-leading standards for safeguarding customer data and account information. To obtain a copy of the SOC 2 Type 2 report, eligible customers, partners, and prospects are encouraged to reach out to IDrive® Mirror Support. Your trust in our commitment to best practices is our priority.
-
GDPR
The General Data Protection Regulation (GDPR) is a European Union regulation that is aimed at protecting the personal data of EU citizens. IDrive® Mirror employs the best practices and technologies to ensure the highest standards of data security and privacy of personal data.
-
PCI
Organizations that handle cardholder information must comply to the Payment Card Industry Data Security Standard. IDrive® Mirror is PCI compliant and does not store any credit card or financial data. We use third party vendors to store and manage cardholder data and conduct online transactions.
-
HIPAA
The Health Insurance Portability and Accountability Act (HIPAA), provides directives on administrative, physical, and technical safeguards for patient data and records. The security and privacy measures implemented by IDrive® Mirror assists businesses in the healthcare domain to meet HIPAA compliance.
-
SOX
Sarbanes-Oxley (SOX) Act mandates the retention of electronic records, messaging, and financial transactions. IDrive® Mirror assists businesses in complying with SOX requirements, providing support for the secure retention of crucial electronic data.
-
GLBA
Gramm-Leach-Bliley Act safeguards consumer private information at various financial institutions. IDrive® Mirror aids financial institutions in complying with the Gramm-Leach-Bliley Act, ensuring the secure protection of consumer data.
-
SEC/FINRA
The Securities and Exchange Commission (SEC) and Financial Industry Regulatory Authority (FINRA) mandate secure, long-term storage solutions for financial records and electronic communications. IDrive® Mirror helps financial institutions meet these compliance requirements.