The Careview Software Platform (Careview)
uses Microsoft Azure as its Cloud Service Provider. The five major reasons we selected Microsoft Azure were:
- Microsoft invests over 1 billion USD annually on cyber security research and development
- Microsoft employ more than 3,500
security experts who are completely focused on securing your data and
privacy.
- Microsoft Azure has more
compliance certifications than any other cloud service provider. View
the comprehensive list.
- All information created in
Careview is stored at Microsoft Data Centres located in Sydney.
- Microsoft Azure have SLAs in
place to guarantee 99.99% service availability uptime.
Data Security
System Access
Several measures are applied to
protect the information stored in Careview:
- Each User is provided with a unique Username
and Password combination.
- Passwords are stored with a salt and
asymmetrical encryption using a strong cryptographic cypher according to best
practises.
- Two-factor authentication has been enabled for all Careview user accounts, using email and SMS messaging.
Please note that we strongly advise
all Careview Users to create strong passwords that are a minimum of 8
characters, including combinations of letters, numbers and special characters.
Ensure that your password is not the same as the password you use for your actual
email login.
Data Storage and Encryption
Data created in Careview is
encrypted both at rest (i.e., in storage) and during transit. All compute
instances and database storage instances are kept in Azure Australian
datacentres. All traffic from your web browser and from mobile devices are
encrypted, routed through SSL (HTTPS protocol). Communication between compute
instances and database storage within datacentres is kept within Australian
infrastructure. All information created in Careview is stored onshore in
Australia.
IRAP Compliance
Microsoft Azure has
undergone Information Security Registered Assessor Program (IRAP) assessments
and is certified on the Australian Government Certified Cloud Service List
(CCSL) by the Australian Cyber Security Centre (ACSC).
Careview follows the ISO 27001 framework for information security, ensuring that:
- security risks are assessed and appropriate controls are implemented to manage risk
- internal policies and controls exist and are followed for data classification and protection
- intrnal policies and controls exist and are followed for the prevention, detection and resolution of security vulnerabilities and issues
- our information security management system is reviewed on a regular basis, to ensure it is still fit for purpose and updated where required to meet changing needs and requirements.
If you have any specific queries or questions about information security, please send them to us on
support@careviewapp.com.