Introduction

Convesio takes information security very seriously. We have invested a great deal of time, effort, and resources into ensuring that only authorized users can use the Convesio platform, and that our users’ information is secure.

Organizational Security

All our employees are vetted before hire, including reference checks with former managers, and only those with a recognized business need have access to customer data. All employees receive training on security and privacy topics on a regular basis and are advised to report any potential problem to their direct manager.

Data Center Security

Convesio uses OVH datacenters where access is strictly monitored. To avoid any intrusions or risks, each perimeter is secured with barbed wire fences. The area is also monitored by constant video surveillance and motion detection sensors. Activity both within and outside of the datacenters is monitored and recorded on secure servers, with surveillance teams working on site 24/7.

In order to control and monitor access to the premises, strict security procedures have been put in place. Each staff member receives a RFID name badge, which is also used to restrict their access. Employee access rights are assessed regularly, according to their remit. To access the premises, employees must hand in their badges for verification before passing through the security doors.

Network Security

OVH deploys its own fiber optic network across the globe. Hardware at the cutting edge of technology is selected, installed and maintained by in-house teams of engineers.

The OVH network has a capacity of 8 Tbps in Europe, and 4 Tbps in North America. It is also connected to 33 points of presence across four continents. OVH designed the network to be fully redundant: several security loops have been put in place to eliminate any risk of services becoming unavailable. With this abundance of links, your data can take the shortest route, resulting in minimal latency and faster load times.

The OVH teams provide a human presence in the data centers 24 hours a day and 365 days a year, to guarantee that the servers are constantly maintained. In the event of a technical incident, they will react immediately to ensure that your server is repaired as quickly as possible.

DDOS Protection

OVH has set up 9 anti-DDoS infrastructures with a capacity of 6x600Gps + 1x 240Gbps + 2x120Gbps across the group’s data centers. This way, OVH can mitigate up to 4 Tbps, 24/7.

Site Security

Advanced Site Security Settings

Each site on Convesio comes with many out of the box security settings preconfigured. In addition, each site has advanced security features that are easily configured in your Convesio account for each site. Features include:

  • X-Frame-Options
  • X-XSS-Protection
  • X-Content-Type-Options
  • Referrer-Policy
  • Feature-Policy
  • Content-Security-Policy
  • Bot Detection Powered by Ellipsis Human Presence

Advanced Threat Identification System

Convesio’s proprietary threat identification system identifies malicious requests based on usage patterns and intelligently blocks future attempts.

Site Isolation and Container Security

Each site runs in its own Docker Container with isolated resources.

Encrypted Connections

We only allow encrypted SFTP connections to your site.

Malware Scanning

Convesio has developed a proprietary malware scanning stack that includes many of the leading security technologies including Yara and Antivirus scanning. Convesio’s malware scanning is continuous and in real time.

Backups

Convesio provides automated site backups which are stored remotely on Amazon S3.

Account Security

Convesio has an optional 2FA (Two-Factor Authentication) setting which can be configured by request.