HOW SECURE IS MY DATA?

Centric FAO is committed to the protection, security and confidentiality of the information that you share with us.
We have established a reliable information security system to give you a secure outsourcing experience.

Through both physical and technology - our security measures are the following:-

IT measures to protect data confidentiality, theft etc

Entry into the Centric FAO premises is restricted. Only authorized persons with Swipe identity card are allowed into the premises.

USB ports are disabled

Employees can send a maximum of 1MB file as attachment through their mails.

CC-Cameras are placed for security purposes

CD-drives are disabled

Data Files Backup

1. The daily data backup is stored at Centric FAO office
2. Previous Day backup is stored at a premises which is outside Centric FAO
   office/ building (Secure Projects Office)
3. Disaster Recovery Backup: Data files so backed up storage media shall be stored away from the development centre for disaster recovery purposes.
4. Monthly Backups are stored at bank locker for disaster recovery

Measures to control risk of information being leaked by Centric FAO staff members

As part of HR process and policies, Centric FAO do a thorough personal and professional background checkup of each of the employee recruited.

There will an agreement to be signed by the employee that he/she bound to maintain the confidentiality of the data.

Encryption details/procedure on how scanned data provided by our UK centre is protected

PGP Encrypt/Decrypt solution:

By blocking unauthorized parties from viewing messages, we can prevent financial loss and legal liability because of the disclosure of sensitive information.

Data confidentiality is applied in two steps:

1. Encrypting the data: In this step, the sender converts data file to PGP file, rendering it unintelligible to parties other than the intended recipient.
2. Decrypting the data: In this step, PGP file is rendered intelligible to the intended recipient by converting it back to data file.

We suggest to all clients that the files/data should be uploaded to a secured common FTP server. The FTP server is username/password protected and any access to the files   on the server requires authentication. To protect data within a message from being disclosed to unintended parties, the files are uploaded in a PGP encrypted format.  Encrypting data enables confidentiality; this means that if the data falls into unauthorized hands the data is unreadable. The receiver downloads the files from the FTP server by entering the username/password and decrypts it using the proposed PGP software.

We propose to all clients that they have PGP encryption/decryption software developed for the Centric FAO process and Centric FAO client specific which can be used to encrypt and decrypt the data in a secure manner.