Security on JALDIS

How we treat your data

We have placed the infrastructure that powers our platform at top-tier, ISO certified data centers at strategic locations to ensure access from major areas in Asia, Europe and the Americas. These data centers are designed to the highest specifications for performance, reliability and security.

  1. Data Center Security

    • Multi-redundant data center setup (at least 2n+1)
    • Data center access restricted to data center technicians and approved JALDIS staff
    • 24/7 onsite security staff for protection against unauthorized entry
    • Security camera monitoring on all relevant access locations and within data center
    • Biometric scanners for controlled data center access
    • Physical security audited by an independent contractor

  2. Infrastructure Security

    • Use of hardened, patched Operating Systems
    • Dedicated firewall and VPN services to block unauthorized system access
    • Distributed Denial of Service (DDoS) mitigation service using industry-leading technologies

  3. Operational Security

    • All system accesses logged and tracked for auditing purposes
    • Secure document-destructive policies for all sensitive information
    • Fully documented change-management procedures

  4. Communication

    All data exchanged with JALDIS is always transmitted over TLS/SSL. Your browser should display a green address bar identifying us as "Jaldis B.V.". We believe that communication should not switch between HTTP and HTTPS (TLS/SSL) regardless if you’re sending private data or not.

  5. File storage and backups

    Our infrastructure is fully redundant (n+1). That means for every piece of hardware we have at least one identical copy ready and just waiting for an immediate hot-swap in case of hardware or software failure. Every file or content you upload or create is saved on a minimum of three different servers which replicate them on two separate hard drives each. This includes an off-site backup just for the unlikely event of severe damage to our data center caused by natural force.

    We make not use of encrypt files on hard drives itself because this would add no more security. When accessing files we would need to decrypt them on-the-fly resulting in slow speed and response times. Also all staff members with system access would have access to the decryption routine, thus negating any security it provides. Therefore, we focus on making our systems and network as secure as possible.

    Data transfers between our data centers and within all our complete network are always encrypted.

  6. Software Security

    Our experienced team of server specialists is working 24/7/365 to keep our platform up to date eliminating potential security vulnerabilities. We make use of a wide range of monitoring solutions in and outside our infrastructure for preventing and eliminating attacks to our platform.

  7. Employee access

    JALDIS employees never access private account or organizations unless you require them to for support reasons. For granting access you have to provide them with your personal Service PIN. Support staff may sign into your account to access or change settings related to your support issue. When working a support issue we do our best to respect your privacy and much as possible and access only contents and settings needed to resolve your issue. You can change your Service PIN at every time after the support issue has been resolved. Staff working directly on our storage servers only see chunks of files, complete files required for view and usage are never present to them.

  8. Credit / debit card safety

    When opting for credit or debit card payments for using charged features with your account or organization, we do not store any of your card information on our servers. We have selected Stripe as our payment partner. These company is dedicated to store your sensitive information on their PCI-Compliant platform.

  9. Maintaining Security

    We’re extremely concerned and active about Security on JALDIS. Therefore, we employ full time security staff to help identify and prevent new attack vectors. New features are always tested to rule out potential attacks including XSS-vulnerability etc.

    We also maintain relationships with reputable security firms to perform penetration tests and ongoing audits of JALDIS and its source code on an regular basis. These firms include …

Security at a glance

  1. Multi-redundant data center

  2. 24/7/365 security staff

  3. SSL/TLS encryption

  4. Hardened server software

  5. Multiple Redundant Data Storage

  6. DDoS Protection

  7. PCI-Compliance

Contact Us

Please feel free to email us at [email protected] at any time if you have any question, concern or comment about JALDIS’s security.