Convesio takes information security very seriously. We have invested a great deal of time, effort, and resources into ensuring that only authorized users can use the Convesio platform, and that our users’ information is secure.
Organizational Security
All our employees are vetted before hire, including reference checks with former managers, and only those with a recognized business need have access to customer data. All employees receive training on security and privacy topics on a regular basis and are advised to report any potential problem to their direct manager.
Data Center Security
Convesio uses OVH datacenters where access is strictly monitored. To avoid any intrusions or risks, each perimeter is secured with barbed wire fences. The area is also monitored by constant video surveillance and motion detection sensors. Activity both within and outside of the datacenters is monitored and recorded on secure servers, with surveillance teams working on site 24/7.
In order to control and monitor access to the premises, strict security procedures have been put in place. Each staff member receives a RFID name badge, which is also used to restrict their access. Employee access rights are assessed regularly, according to their remit. To access the premises, employees must hand in their badges for verification before passing through the security doors.
Network Security
OVH deploys its own fiber optic network across the globe. Hardware at the cutting edge of technology is selected, installed and maintained by in-house teams of engineers.
The OVH network has a capacity of 8 Tbps in Europe, and 4 Tbps in North America. It is also connected to 33 points of presence across four continents. OVH designed the network to be fully redundant: several security loops have been put in place to eliminate any risk of services becoming unavailable. With this abundance of links, your data can take the shortest route, resulting in minimal latency and faster load times.
The OVH teams provide a human presence in the data centers 24 hours a day and 365 days a year, to guarantee that the servers are constantly maintained. In the event of a technical incident, they will react immediately to ensure that your server is repaired as quickly as possible.
DDOS Protection
OVH has set up 9 anti-DDoS infrastructures with a capacity of 6x600Gps + 1x 240Gbps + 2x120Gbps across the group’s data centers. This way, OVH can mitigate up to 4 Tbps, 24/7.
Site Security
Advanced Site Security Settings
Each site on Convesio comes with many out of the box security settings preconfigured. In addition, each site has advanced security features that are easily configured in your Convesio account for each site. Features include:
- X-Frame-Options
- X-XSS-Protection
- X-Content-Type-Options
- Referrer-Policy
- Feature-Policy
- Content-Security-Policy
- Bot Detection Powered by Ellipsis Human Presence
Advanced Threat Identification System
Convesio’s proprietary threat identification system identifies malicious requests based on usage patterns and intelligently blocks future attempts.
Site Isolation and Container Security
Each site runs in its own Docker Container with isolated resources.
Encrypted Connections
We only allow encrypted SFTP connections to your site.
Malware Scanning
Convesio has developed a proprietary malware scanning stack that includes many of the leading security technologies including Yara and Antivirus scanning. Convesio’s malware scanning is continuous and in real time.
Backups
Convesio provides automated site backups which are stored remotely on Amazon S3.
Account Security
Convesio has an optional 2FA (Two-Factor Authentication) setting which can be configured by request.