At TeamSupport, we work very hard to ensure your data is safe, and the people we hire and contract with must also ensure their activities are safe, with continual consideration to data integrity and security.
TeamSupport will maintain strict policies and procedures designed to deliver top-notch customer service software security features and to protect the privacy of our clients information. We employ SSL/TLS encryption (AES 256) and other privacy protection technology to secure all of our data. Additionally, these policies and procedures are reviewed annually, or as needed to maintain a healthy service to our customers.
We are able to review and sign Business Associate Agreements, or BAAs, with users of our Enterprise customers who are on annual billing. If you need a BAA in order to comply with the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (HITECH), please email firstname.lastname@example.org and include the name of the organization or individual to whom the BAA should be addressed.
To help ensure the security and privacy of our clients information, we devote significant resources to continually develop our infrastructure. Our customers access TeamSupport only with a valid username and password combination, which is encrypted via SSL/TLS while in transmission.
TeamSupport enforces tight operating system-level security by password protecting all operating system accounts and production databases. We also enforce operating system-level security by using a minimal number of access points to all production servers.
For our customers, each TeamSupport account includes two-factor authentication, password management options, user lock-out and session expiration to ensure they have the tools to help maintain account security within their environment.
Encryption at Rest is also provided to our customers.
Our data center facility Tierpoint operates in an SSAE16 audited facility with a very secure environment and provides 24-hour physical security, picture identification, redundant electrical generators, redundant data center air conditioners and other back-up equipment designed to keep servers and data continually up and running to the best of our abilities.
In addition, our data center is audited under ITAR, EU-US Privacy, SOC 1, SOC 2, HIPAA, GLBA, PCI Colo*, and PCI Demarc** standards annually.
All Production Network systems, networked devices, and circuits are constantly monitored and logically administered by our teams.
Our network security consists of multiple security zones. We operate a mix of web servers, utility servers and database servers. DMZs are utilized between the Internet, and internally between the different zones.
Network security scanning assists our team to quickly identify potentially vulnerable systems.
In addition to internal scanning and testing, TeamSupport employs third-party security experts to perform a broad penetration test across our network.
In case of an alert, we have systems in place to escalate to our 24/7 teams providing operations, network and security coverage. Our employees are trained on security incident response processes.
All customer data is backed up to a geographically separate datacenter on a continual basis. These backups are verified and encrypted. TeamSupport also utilizes a DR facility outside of our home state of Texas, should we experience a disaster event.
Our Disaster Recovery architecture ensures that our services remain available or are easily recoverable in the case of a disaster. We have partnered with Green House Data and have built a robust technical environment, plans, and testing.
We have developed a thorough set of company policies covering a series of topics. These policies are shared with, and made available to, all employees and contractors with access to TeamSupport information.
New employees attend security awareness training which is given upon hire and reviewed annually. In addition, employees are provided ongoing internal security awareness updates throughout the year because we understand this is an evolving subject matter. Topics cover a wide range, specifically smart password management, proper use and storage of devices, public awareness and customer privacy.
TeamSupport performs background checks on all new employees in accordance with local laws. The background check includes criminal, education, and employment verification.
All new hires are screened through the hiring process and required to sign Non-Disclosure and Confidentiality agreements.