How FSSI Handles and Safeguards Your Data.
Since our inception in 1980, data security has been a top priority at FSSI. Today, we employ some of the latest and most advanced technologies and practices to maintain the safety and integrity of client information.
User/Server Level Security
FSSI maintains User/Server level security whereby data files are secured by user permissions enforced by centralized domain policies. Service Level Security (web, email, database, and other services) are audited and updated with the latest Service Packs.
Firewall and IPS Protection
While the firewall blocks malicious and/or unauthorized network attempts, the Intrusion Prevention System (IPS) detects potentially harmful traffic to protect the network at the application layer.
Secure Data Transmissions
FSSI supports and recommends the SFTP file transmission protocol to ensure protection for files in transit, and PGP encryption for files at rest. Once delivered to our DMZ, the files are pulled into our secure production network.
Other transmission methods are also available (Dedicated T-1′s, private VPN, etc.) and can be implemented according to clients’ needs.
Validation and Secure Storage/Archival
Once a data-file naming standard is validated and the data-validation preprocess is successful, files are automatically pulled into the FSSI network for processing. All client input data is stored in secure locations with access limited to authorized personnel.
Input files received and processed via client server networks are stored for no more than 60 days, unless specified otherwise. Following processing and printing, files are securely archived.
Deletion and Shredding
Documents containing personalized customer data (printed or electronic) are deleted or shredded using FSSI’s commercial shredder after 30 days from use, or stored in a secure location if they are needed for longer.
Physical Security Precautions
FSSI has numerous, facility-wide physical-security measures in place, including: access-limiting key cards for every employee, door alarms, internal and external security cameras, a gated entryway and secure property perimeter.
Disaster Recovery (DR)
In accordance with both our operating policies and SSAE16 Type 2 (SOC 1) requirements, FSSI adheres to a formalized DR plan that is regularly reviewed and updated. For help in assessing your current or future DR needs or tips for drafting your company’s DR plan, contact FSSI today.