Forum is located in the AWS East/West (US) Datacenter (US WEST 2) and follows the strict security controls provided by AWS.
How is customer data managed within Forum? Each customer has their own data schema! So absolutely no sharing of data with other customers.
In addition to that, we also want to limit (as much as possible) the PII data that customers store in Forum. Apart from Name and Email which are required to create a profile, our customers can decide how much or how little information to store in Forum (like Title, Departments etc)
Data Security Model:
- The entire database is encrypted; AWS controls the key (AWS KMS)
- AES-256 Encryption
- One-way encryption on passwords; two-way on credentials
All data is encrypted in transit (HTTPS)