HomeAbout Us
ICT Services
MikroTik Solutions
Automotive
Engineering
IoT Solutions
Media
Contact UsBusiness Demo
HomeAbout Us
ICT Services
MikroTik Solutions
Automotive
Engineering
IoT Solutions
Media
Contact UsBusiness Demo
November 9, 2020

Virtual Trak Security & Privacy - Calming your number 1 fear

Virtual Trak takes the security and privacy of customer data seriously.

We use a multi-layered approach to secure the private information our customers entrust to us. Our service was designed and built from the ground up with the security of your data in mind to ensure the confidentiality and integrity of all collected data.

SECURITY

How we secure collection of your data

Data is Encrypted in Transit – All account information is encrypted in transit and stored in a secure data center in hosted by Google Cloud Platform (GCP).

  • VirtualTrak uses encrypted connection protocols including HTTPS, SSL, and TLS.
  • Agent to VirtualTrak Cloud: Communication between the VirtualTrak cloud and the agent uses HTTPS/TLS with AES-128 encryption.
  • Mutual authentication is provided by a combination of digital certificate and per-instance shared key created during deployment.

—————————————————————

How we secure storage of your data

Data Is Encrypted at Rest – VirtualTrak uses several layers of encryption to protect customer data at rest in the Google Cloud Platform (GCP) products.

  • Data within the cloud is stored using AES-256 encryption.
  • Data is automatically encrypted prior to being written to disk.

Every piece of data; screenshots, videos, and activity logs, are split into discrete blocks which are encrypted.

—————————————————————

How we support identity authentication

Comply with your organization’s authentication security standards and protocols.

  • VirtualTrak supports Single Sign-On (SSO and Multi-Factor Authentication (MFA).
  • When SSO &/or MFA is enabled, we delegate the user authentication process to identity providers that support the Security Assertion Markup Language (SAML) 2.0 standard.
  • VirtualTrak has certified SSO for the following identity providers: Okta, Azure AD, OneLogin and Google Suite.

Rigorous security testing

We regularly test our infrastructure and apps to isolate and remediate vulnerabilities. We also work with industry security teams and third-party specialists to keep our users and their data safe. Virtual Trak is designed with multiple layers of protection across a distributed, reliable infrastructure. All Virtual Trak data is stored in a secure data warehouse managed and secured by Google Cloud Platform (GCP).

 

PRIVACY

Who has access to my data?

You own your data. Virtual Trak does not view the private information collected by your account. Our policy is to take a ‘least-privilege’ approach, meaning we only access customer data upon request for support from an authorized administrator for your account.

  • Client information stored in the cloud is encrypted at rest with our organizational keys. Virtual Trak employees do not have access to this information unless temporarily granted by the customer for troubleshooting.
  • User access is highly restricted, must be approved by an organizational admin you designate.

—————————————————————

How we protect your data

Virtual Trak is designed with multiple layers of protection across a distributed, reliable infrastructure. All Virtual Trak data is stored in a secure data warehouse managed and secured by Google Cloud Platform (GCP).

  • Servers are hosted in a SOC2 type 2 compliant datacenter, across multiple availability zones/regions.
  • Google’s physical infrastructure has been accredited under ISO 27001, SOC 1/SOC 2/SSAE 16/ISAE 3402, PCI Level 1, FISMA Moderate, and Sarbanes-Oxley.
 

Customers personal information

Today, people are rightly concerned about how their personal information is used and shared. Organizations have a responsibility in helping people understand their own activity and the activity of their employees. VirtualTrak technology empowers organizations to identify behavioral trends and gain insight into human work behavior on digital devices in the workplace. VirtualTrak strongly encourages our customers to be transparent with the users of their digital systems and inform them that they will have their activity monitored. The intent of monitoring an organization’s employees is to better understand how to increase organizational productivity, strengthen cyber defenses, and lift employee engagement.

We take reasonable precautions to protect Customers Personal Information in our possession from loss, misuse, and unauthorized access, disclosure, alteration or destruction. We will make reasonable efforts to keep your Personal Information reliable for its intended use, accurate, current and complete. As necessary, we will take additional precautions regarding the security of particularly sensitive information, such as credit card information. While we strive to secure your Personal Information, we cannot warrant or guarantee that this information will be protected under all circumstances, including those beyond our reasonable control.

 

Redaction of private information

Virtual Trak enables organizations to keep HIPAA, PCI and Special Categories of Personal Data (in accordance with Article 9 of GDPR) from being recorded. Automated sensitive content redaction and flagging are available to protect private data before it is ever stored on Virtual Trak systems.

 

Credit cards

Virtual Trak never stores credit card details associated with your account. All credit card information is collected and processed by a third-party, PCI compliant payment processor. Your card information is passed directly to them, meaning your credit card information never touches our servers.

 

Compliance

Virtual Trak supports compliance initiatives such as HIPAA, COPPA, and GDPR. Ultimately customers are responsible for evaluating their own compliance with the law.

 

Data recovery and retention

We enable all of our customers to control their own data through the app. As long as your account is active, you have full control over specific user information retained, including: screenshots, videos, and length of time. Activity Log Data, videos and screenshots can be exported via a variety of methods in compliance with Right to Data Portability (GDPR, Article 20).

 

Passwords

We do not have access to any password details. All passwords are encrypted in transit, and stored in a secure data center.

 

Join a trusted community

Virtual Trak supports compliance initiatives such as HIPAA, COPPA, and GDPR. Ultimately customers are responsible for evaluating their own compliance with the law.

sms SERVICES
FAX OVER IP
MIKROWISE
DARK WEB MONITORING
Chemical mechanical bellow seal
Earth moving plant and equipment parts.
GYRAL SEAL
HOSE CLAMP BLOCKS
Virtual Inference IoT Solutions
Generator Monitoring

Sign up for Virtual news and industry updates

    cloud-synccogeyepower-switchmenu-circle linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram