In transit
All customer data transmitted to our servers through public networks is protected using strong encryption protocols. All connections to the servers use robust encryption at the transport layer (TLS 1.2 and TLS 1.3) with strong ciphers on all connections, including web access and API access.
For https connection encryption, we use digital certificates issued by trusted entities using 2048-bit RSA encryption.
Protocols
|
Protocol |
Supported? |
Cipher Suite |
|
TLS 1.3 |
Yes |
TLS_AES_128_GCM_SHA256 TLS_AES_256_GCM_SHA384 |
|
TLS 1.2 |
Yes |
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 |
|
TLS 1.1 |
No |
N/A |
|
TLS 1.0 |
No |
N/A |
|
SSL 3 |
No |
N/A |
This ensures a secure connection, as it allows authentication of both parties involved in the connection and encrypts the data to be transferred.
Our email services used on the GlobalSuite platform use TLS by default. TLS encrypts and securely sends the email, mitigating interceptions between mail servers where the services support this protocol.
At rest
Information storage systems have encryption at rest using a 256-bit AES algorithm.
This level of encryption ensures that data is protected while stored on disks, databases, volumes, or any other type of persistent storage.
Cryptographic key management services (e.g., KMS) are also available to safeguard and manage secrets used for encryption at rest.