Hodos Analytix products are hosted by Hetzner Online. Hetzner Online provides world-class hosting facilities that are secure, highly available, and redundant, with compliance WITH DIN ISO/IEC 27001
The ISO 27001 certificate, an internationally recognized standard for information security, certifies that Hetzner Online GmbH and Hetzner Finland have established and implemented an appropriate information security management system (ISMS). The scope of Hetzner’s certified ISMS includes the infrastructure, operation and customer support of the data center parks in all three locations: Nuremberg, Falkenstein, and Helsinki. For more more information on Hetzner Online certifications and compliance programs, please visit https://www.hetzner.com/unternehmen/zertifizierung
Customer data is hosted in in Germany and Finland. Hodos Analytix is GDPR compliant.
Data encryption at rest & in transit
All communications over public networks with Hodos Analytix applications and APIs is conducted over TLS/HTTPS. All data is stored encrypted at rest, including for backups.
Hetzner Online data centers are outfitted with world-class physical hosting capabilities. Combinations of multiple power feeds, Uninterruptible Power Supply (UPS) systems, and on-site electrical generators provide layers of backup power. Buildings have temperature and humidity monitoring and management, automatic water detection and removal, and automatic fire detection and suppression.Telecommunications and Internet connections are redundant.
Additional security is applied to information technology rooms and systems including forced open door alarms, thread and electronic intrusion detection systems, multi-factor authentication.
Data Center buildings have strict physical access review and scrutiny. All physical entry is done via electronic access control terminals with a transponder key, video-monitored high-security perimeter fencing around the entire data center park, ultra-modern surveillance cameras for 24/7 monitoring of access routes, entrances, security door interlocking systems and server rooms.
Hetzner Online uses its automated security tools to protect web applications, websites, servers, and IT infrastructure from DDOS (distributed denial-of-service) threat. Its automated system recognizes almost all attack patterns in advance, allowing it to block the attacks and effectively thwart the vast majority of them. It uses the latest hardware appliances and sophisticated perimeter security technologies, providing first-rate protection against large-scale DDoS attacks.
Third-party penetration testing
Hodos Analytix works with multiple penetration testing vendors to conduct several tests per year. We conduct a spectrum of Application security testing and Attack management solutions including penetration testing, digital asset inventory and security ratings and threat intelligence. In the near future, we will be providing testing reports upon request.
Data security policies & standards
Hodos Analytix has a comprehensive roadmap of policies and standards covering all aspects of privacy and security. Employees must affirm their responsibilities and engagement in protecting customer data as part of their employment.
Employee workstations and hardware are secured with hard drive encryption, antivirus software and advanced malware detection with central management and control.