Alohi Suite security and data protection features – FAQs

Benefit: We offer some of the strongest security and privacy protections to safeguard your data, including data encryption at rest and in transit, extensive regulatory compliance offerings, Swiss-grade privacy protection, data residency, compliance with electronic signature regulations, and many more.

Alohi Suite (Sign.Plus & Fax.Plus) provides a comprehensive suite of security, privacy and compliance features to ensure the confidentiality, integrity, and availability of your signed documents. You can trust in our robust safeguards to protect your sensitive data, giving you the peace of mind to focus on your business priorities.



Sign.Plus

What security features does Sign.Plus offer?

We offer some of the strongest security and privacy protections to safeguard your data across all our services.

Visit our Security page

Data Encryption

All files at rest (signed files) are encrypted using 256-bit Advanced Encryption Standard (AES), with unique encryption keys for each user. To protect data in transit between our apps (mobile, web or API) and our servers, we use Secure Sockets Layer (SSL)/Transport Layer Security (TLS) for data transfer, creating a secure tunnel protected by 128-bit or higher Advanced Encryption Standard (AES) encryption.

 

N-tier System Architecture

To increase stability, performance, and security, our system architecture relies on an n-tier architecture with multiple layers of protection. These safeguards include encryption, network configuration, and application-level controls, all strategically distributed across a scalable and secure infrastructure.

 

Two-Factor Authentication (2FA)

2FA is available for all Sign.Plus users regardless of their plans, and adds an extra layer of security for their accounts.

 

Single Sign-On (SSO)

SSO mitigates compliance and security risks for organizations, and simplifies the login process with more control over user authentication.

 

Hardware Level Security

All signed files are only stored in Swiss data centers that operate from locations conforming to the most restrictive security standards (ISO 27001), and are part of the Cloud Security Alliance (CSA).

 

Internal and External Vulnerability Assessments

Internal and external vulnerability assessments are conducted regularly to identify and address any potential security risks. Vulnerability assessments’ scope cover web application, network, operating system, database, cloud infrastructure and even HR security.

What data protection features does Sign.Plus offer?

Extensive Regulatory Compliance Offerings

Having world-class security and privacy is the philosophy we built our product and service offerings around. We are committed to certifying ourselves and our products for all relevant certifications and compliances, including SOC 2, HIPAA, ISO 27001, GDPR, CCPA, and more.

Visit our Compliance page

 

Exceed Your Data Residency Requirements

Meet and exceed your local data residency requirements by storing your signed documents in the region of your choice. There are over 20 regions to choose from including United States, Canada, Australia, Japan, and Switzerland. You can reside your signed documents along with their backups in the same data center, or different data centers.

Visit our Data Residency page

 

Strongest Privacy Protection 

We securely store personal user information in our Swiss data center, safeguarded by the Swiss Federal Data Protection Act (FADP) and the Swiss Federal Data Protection Ordinance (FODP). The core principle at the heart of our platform's architecture is to ensure the protection, confidentiality, and security of our users' data.

How secure is Sign.Plus?

In general, the extensive array of security and compliance features available demonstrates Sign.Plus' dedication to safeguarding user data while offering a secure and dependable electronic signature solution for signing and sending documents across various platforms and devices.

Sign.Plus provides robust security measures to safeguard user information by employing data encryption to protect data at rest and in transit. Additionally, we implement two-factor authentication for user accounts and conduct automated and manual application security testing to minimize the risk of security incidents.

Moreover, Sign.Plus ensures compliance with a wide range of industry standards and data protection regulations, including SOC 2, HIPAA, ISO 27001, GDPR, CCPA, and others. Additionally, Sign.Plus adheres to electronic signature regulations like ESIGN, eIDAS, ZertES, and more, reaffirming its commitment to regulatory adherence.


Fax.Plus

What security features does Fax.Plus offer?

We offer some of the strongest security and privacy protections to safeguard your data across all our services.

Visit our Security page

Data Encryption

All files at rest (faxed files) are encrypted using 256-bit Advanced Encryption Standard (AES), with unique encryption keys for each user. To protect data in transit between our apps (mobile, web or API) and our servers, we use Secure Sockets Layer (SSL)/Transport Layer Security (TLS) for data transfer, creating a secure tunnel protected by 128-bit or higher Advanced Encryption Standard (AES) encryption.

 

N-tier System Architecture

To increase stability, performance, and security, our system architecture relies on an n-tier architecture with multiple layers of protection. These safeguards include encryption, network configuration, and application-level controls, all strategically distributed across a scalable and secure infrastructure.

 

Two-Factor Authentication (2FA)

2FA is available for all Fax.Plus users regardless of their plans, and adds an extra layer of security for their accounts.

 

Single Sign-On (SSO)

SSO mitigates compliance and security risks for organizations, and simplifies the login process with more control over user authentication.

 

Hardware Level Security

All faxed files are only stored in Swiss data centers that operate from locations conforming to the most restrictive security standards (ISO 27001) and are part of the Cloud Security Alliance (CSA).

 

Internal and External Vulnerability Assessments

Internal and external vulnerability assessments are conducted regularly to identify and address any potential security risks. Vulnerability assessments’ scope cover web application, network, operating system, database, cloud infrastructure and even HR security.

What data protection features does Fax.Plus offer?

Extensive Regulatory Compliance Offerings

Having world-class security and privacy is the philosophy we built our product and service offerings around. We are committed to certifying ourselves and our products for all relevant certifications and compliances, including SOC 2, HIPAA, ISO 27001, GDPR, CCPA, and more.

Visit our Compliance page

 

Exceed Your Data Residency Requirements

Meet and exceed your local data residency requirements by storing your faxes in the region of your choice. There are over 20 regions to choose from including United States, Canada, Australia, Japan, and Switzerland. You can reside your faxes along with their backups in the same datacenter or different data centers.

Visit our Data Residency page

 

Document Retention Policy 

With the document retention policy, companies can choose to remove their fully-encrypted faxes from our data centers after a certain period. You can specify the number of days Fax.Plus should retain each fax after creation. After that period, Fax.Plus will permanently purge the faxes stored. To learn more about Fax.Plus Document Retention, refer to our article here.

How secure is Fax.Plus?

In general, the extensive array of security and compliance features available demonstrates Fax.Plus' dedication to safeguarding user data while offering a secure and dependable online fax solution for sending and receiving faxes across various platforms and devices.

Fax.Plus provides robust security measures to safeguard user information by employing data encryption to protect data at rest and in transit. Additionally, we implement two-factor authentication for user accounts and conduct automated and manual application security testing to minimize the risk of security incidents.

Moreover, Fax.Plus is an extremely secure online fax service that ensures compliance with a wide range of industry standards and data protection regulations, including SOC 2, HIPAA, ISO 27001, GDPR, CCPA, and others.

  Information

Tip: Visit our Trust Center to learn more about our privacy, security, and compliance programs, and all the information you need to manage your data.

 
 
Was this article helpful?
0 out of 0 found this helpful
More Articles in this section