- Application Security is ensured by the possibility of using SSL with Catglobe. Secure Socket Layer is encryption that ensure secure communication between client and server for both respondents and consultants.
- Catglobe uses multiple high-end firewalls.
Catglobe uses IDS (Intrusion Detection System) Catglobe uses IPS (Intrusion Prevention System) systems
- Physical security is ensured by using a professional external partner for hosting the environment. Including Access Control to all components of the system.
- Catglobe has procedures for which staff have access to data of the clients and procedures to ensure that data is not corrupted intentionally or by mistake.
- Catglobe uses a combination of system and random generated passwords to identify the respondent and the correct state in the interview when moving from page to page.
- Interview pages are not cached, i.e. No information will be stored on the respondents' computers when the browser is closed. This is critical for new product and concept testing.
- In addition to different levels of project permissions, other access levels are determined by the profile assigned to the Catglobe user.
- Log-in controls: Each account has an expiration date.
- Passwords are required by the system to be changed regularly (interval defined by the client) and must follow given criteria (validation defined by the client).
- Accounts are locked after a certain number of unsuccessful login attempts. Passwords are not visible to Catglobe employees, and One Time Passwords are set up for new / re-opened accounts
Security Assessments: Catglobe hosted Software As A Service solution
- Security Assessments - Catglobe hosted Software As A Service solution :
The Catglobe ASP Hosting Environments has been designed with security, high-availability and performance in mind. Catglobe invests significantly in outsourcing SaaS Hosting Environments with leading Managed Hosting providers, securing the highest available service levels. Catglobe has passed 100% of all security due diligence assessments carried out on it by a number of global organizations, including some of the largest financial institutions as well as governmental agencies. Catglobe delivered 99 % uptime for respondents in 2006.
- The software itself is well-engineered, using solid, proven technologies and designs. It is well suited for growth and able to meet demands from a increased number of customers. The run-time environment is safe and the solution is in general both scalable and reliable. The management team has clear goals for improving this already good standard – Best Brains (2007)
- All servers and application services, as well as the network infrastructure, are redundant with no single-point-of-failure. Network IDS/ IPS is deployed to secure the network by automatically blocking malicious network traffic. All servers, services and network are monitored 24/7 by both Catglobe and the hosting partner with operation teams on stand-by. Strict change configuration control and server installation routines ensure best possible uptime and availability for ASP clients.