Noggle Network – Security Guidelines
Effective: October 10, 2015
Ensuring that the Noggle managed services remains secure is vital to protecting your data. Below are some details on our security practices. The security safeguards that we use to protect your data vary based on the service type (e.g. peer-to-peer library exchange, document-based expert retrieval) and the current state of technology.
Encrypted Traffic by Default, End-To-End encryption from Client to Client
Noggle uses 256-bit AES encryption and supports SSL/TLS for all data transfer. In addition, all stored information in our central vaults is obfuscated. We monitor the security community’s output closely and work promptly to upgrade the service to respond to new vulnerabilities as they are discovered.
Secure Physical Location in Europe (EU)
Our data center servers are located and operated in the EU. The cloud services are operated by latest Microsoft Azure platform technolgies. Microsoft has devoted an entire portion of their site to explaining their security measures, which you can find here: https://azure.microsoft.com/en-us/support/trust-center/security/
We understand that you rely on the Noggle Network to work. We’re committed to making the Noggle Network a highly-available, ultra-reliable service that you can always count on. We build systems that tolerate the failure of individual computers or whole datacenters and keep many copies of your data for redundancy.
We regard the information you share within your noggle peers as private and confidential to only you and your peers. We place strict controls over our employees’ access to internal data and decouple meta-data of your libraries from the library itself. This way, a library is just a piece of bits and bytes without the information about ownership and document locations. Noggle obfuscates the meta-data so that only the dedicated Noggle client of your peer is able to re-couple meta-data information with your library.
All of our employees and contractors are bound to our policies regarding customer data and we treat these issues as matters of the highest importance within our company. If, in order to diagnose a problem you are having with the service, we would need to do something that would expose your personal communications to one of our employees in a readable form, we will ask for your consent prior to taking action.
Our fundamental privacy principle is by default: Anything you share via the Noggle Network is private to your peers. That is, viewing the libraries and document information shared within a specific peer group requires authentication as a valid user of that peer group against the Noggle Network.
If you are using Noggle in a workplace or on a device or account issued to you by your employer or another organization, they will most likely have their own policies in place regarding storage, access, modification, deletion and retention of document information. Please check with your employer about what policies they have in place regarding your documents and related content.
We know how important these issues are to you. They are equally important to us. The security, privacy and confidentiality of your document libraries are core to our success as a business and we will continue to be proactive, vigilant and diligent in ensuring its safety.
If you have additional questions regarding data privacy, security or confidentiality, we’d be happy to answer them. Please write to firstname.lastname@example.org and we’ll respond as quickly as we can.