Our solution is hosted on cloud providers like (AWS, Azure and GCP) infrastructure. Cloud providers are responsible for the security of the underlying cloud infrastructure and Alkira takes the responsibility of securing workloads we deploy inside the cloud infrastructure. Cloud providers monitor and audit computing environments continuously, with certifications from accreditation bodies across geographies and verticals, including ISO 27001, FedRAMP, DoD CSM, and PCI DSS. Any device storing any data is subjected to data-at-rest encryption. Thus, a decommissioned device cannot be misused.
Alkira makes use of per-customer, virtual database instances to logically separate one customer’s data from other customers’ data. When a customer stops using the service, Alkira destroys the corresponding virtual database instance. Any customer data that is identified and cataloged by Alkira as personal data is converted to an irreversible hash and stored in the virtual database instance for that customer. Personal data is not captured in clear-text in logs or databases.