With thousands of small and medium sized businesses relying on CRE Secure to manage and run their businesses, we take the security and protection of your data very seriously.
This document outlines some of the processes and methodologies we have implemented to back-up and secure your data on CRE Secure.
- Managed Hosting. We have chosen security industry veteran, GSI, to host the CRE Secure application. When the major card brands initiated the CISP/PCI compliancy program in 2004, GSI was the first commercial data center in the world to meet the stringent security criteria by becoming 100% PCI DSS compliant for managed services. And since then, GSI has continued to build upon its expertise, helping companies understand the complexities of security and achieve their own compliance. Today, GSI is a trusted, respected voice in the PCI marketplace and an active member of the PCI Security Standards Council, providing insight and guidance regarding the implementation of PCI compliance.
- Physical Security. GSI has many years of experience in designing, constructing, and operating secure data centers. GSI maintains a continual state of compliance. GSI has established relationships with many of the industry's Qualified Security Assessors (QSAs) and have a solid understanding of their evaluation requirements. Several times each year, GSI successfully passes their scrutiny of more than 200 compliance criteria. With GSI's PCI Compliant Hosting, the data centers themselves are secured with a variety of physical barriers to prevent unauthorized access.
- Application Security. When you use CRE Secure, the communication between your computer and our servers is encrypted using 256-bit keys (SSL security). This level of security makes it virtually impossible for anyone to intercept and view your data across the Internet.
- Data Backup. We backup our data files on a daily basis at multiple locations. In the event of a catastrophe, we can retrieve our data from multiple locations.
- Redundancy. We designed the CRE Secure application to run on a distributed and redundant architecture. This means that if any of our servers fail, your access to CRE Secure is not affected.
If you have any questions or concerns about the security of your CRE Secure data, please contact us.
(888) 453-4885
