Our Security

Our Support

Learn More

 

The Most Secure Online Backup Service. Ever.

We often tend to lend out our most prized possessions to family and friends, and despite trust, there is nothing we tend to worry about more than the well-being of our belongings - especially when just one document, or database could make or break your business. We think the same applies to backups, which is why we stop at nothing to ensure our clients are 100% secure, 100% protected, and 100% worry-free. 

The foundation of BackJack’s security strategy starts with its people and processes. Security is a combination of people, processes, and technology that, when put together properly, leads to a safe and responsible environment for both itself and its clients. Security is designed into BackJack’s software, service, architecture, infrastructure, and systems from the outset.

 

Read on about how we make sure your data is secure…

 

Right from its initial design, BackJack has always relied on our 6 tent-poles of online security to make sure we are secure from every angle. We highlight these 6 tent-poles with unparalleled emphasis:

(Click on the quotes to learn more about each tent-pole)

  • Physical Security - "… like a Supermax, for your digital life."

    BackJack’s remote storage data centers are housed in nondescript facilities, and critical facilities have extensive setback and military-grade perimeter control berms as well as other natural boundary protection. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff using video surveillance, and state-of-the-art intrusion detection systems to name a few. BackJack only provides remote storage data center access and information to high-level employees who have a legitimate business need for such privileges. Authorized staff must pass authentication to access all remote storage data centers. All visitors and contractors are required to be continually escorted by authorized staff.

  • Data Security - "… an online safety deposit box, and only you have the key."

    All end-user computer data selected for backup and transmitted to BackJack’s remote storage facilities remains stored in its proprietary encrypted format. This ensures that all data backed up using the BackJack client software is stored in a safe format, and can only be retrieved and recovered via the client software with the provision of the one-way encryption passphrase hash known only to the end user. When an end-user file is deleted from the BackJack system, removal starts immediately, and is generally processed within several seconds. Once processed, there is no external access to the deleted file. This storage area is then made available only for write operations and the data is overwritten by newly stored data.

  • Data and Operations Redundancy - "… peace of mind, even in a post-apocalyptic world."

    End-user files stored at BackJack’s remote storage facilities are redundantly stored in multiple physical locations as a normal part of BackJack’s online backup services and at no additional charge to the client. Multiple levels of redundancy ensure ongoing operation and service availability in even the harshest and most extreme of circumstances. This includes multiple levels of redundancy within a center, generator-powered backup for ongoing operations, and full redundancy across multiple dispersed centers. Next-generation controls are used to monitor the centers both locally and remotely, and automated failover systems are present to safeguard systems.

  • Point-to-Point Security - "… your own virtual Brinks’ truck."

    All network communications between the BackJack client software and BackJack’s remote storage facilities, application servers, and database servers is performed via the HTTPS (SSL) protocol. This ensures that point-to-point communications related to end user information and data are encrypted using current technology security measures to protect client information and data. Further measures exist to secure against Distributed Denial of Service (DDoS) attacks, Man In the Middle (MITM) attacks, IP Spoofing, Port Scanning, and Packet Sniffing to protect end-user data transferred from their computer to the BackJack systems. Prior to the network transmission of any file, during the execution of a backup via the BackJack client software, files are encrypted using the end-user-generated encryption passphrase that utilizes a 128-bit CAST encryption algorithm. This is a one-way hash encryption key and, as such, BackJack and its employees have no knowledge of the encryption passphrase to access files that are stored on its remote storage facilities in their encrypted format. Therefore, all data transferred from the end-user’s computer and stored at BackJack’s remote storage facilities is in an encrypted format and transmitted over an encrypted SSL network connection to ensure the highest security possible.

  • Operational Security and Information Accessibility - "… trust, in hard terms."

    Access to information provided by its clients to the BackJack Online Backup service is limited by the need for which the information is required. BackJack employee access to client information is limited by the strictest need to access such information in order to perform their operational duties. All access to BackJack’s production systems is conducted by authorized personnel using encrypted SSH (secure shell), and/or encrypted application access via HTTPS. Specialized knowledge of the data structures and BackJack’s proprietary infrastructure would be required to get any meaningful access to end-user data. This is one of many security layers deployed to ensure security of sensitive data within BackJack and its operational systems.

  • Regulatory Compliance - "… win-win-win"

    BackJack’s remote storage facilities and informational systems ensure compliance with governmental and industry regulations outlining information and data security policies. The following list outlines, but is not limited to, the more widely enforced regulations to which BackJack complies:
    • Gramm-Leach-Bliley Act (GLBA)
    • Sarbanes Oxley (SOX) Health Insurance Portability and Accountability Act (HIPAA)
    • Canada’s Personal Health Information Protection Act (PHIPA)
    • Payment Card Industry Data Security Standard (PCIDSS)
    • Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA)
    • Statement on Auditing Standards No. 70: Service Organizations, Type II (SAS70 Type II)
    • Family Educational Rights and Privacy Act (FERPA)

     BackJack continues its efforts to maintain the strictest of governmental and industry regulation compliance in order to provide its commitment to a secure, world-class information and data backup environment.

 

We at BackJack take privacy and security very seriously, keeping sensitive to the needs of individuals, and businesses; recognizing that your data is confidential, private, and sensitive. BackJack ensures with its client software, web-based applications, and remote storage facilities that information will not be compromised.

BackJack provides a secure and reliable platform for your personal information and data. When you entrust your information with BackJack, you can do so with confidence, knowing that the full weight of BackJack’s technology and infrastructure investment is brought to bear to ensure the security, privacy, and integrity of your information and data.