Overview

Claritum provides Security Policy overview information to outline our procedures, policies and equipment. As part of our security policy, we do not release detailed information. However, Claritum will provide evidence of security measures taken in response to a Client’s Security requirements. Claritum’s Security measures are under constant review and continual enhancement.

The software has been developed for secure business-critical use by multiple named users within trading partner companies.

User Access

Access to the system is only available via a secure Passport. This enables authorised users to log-in using a User name and password. Dependent on Security guidelines, passwords can be modified and updated on a regular basis. A full audit trail of user activity is available. On request, Claritum can limit individual User access the system to specified time bands and/or from specific machines.

Platform Security

Claritum’s systems are based on a highly secure version of Linux noted for its inherent stability, versatility, scalability and security. Many types of vulnerability commonly associated with other less secure operating systems have been specifically identified and removed. The operating system is constantly maintained by security specialists and patches frequently issued to close the vulnerabilities as they are discovered.

All systems contain integrated firewalls to reject external threats as they occur. Robust industry leading trip wire software is present on all of our systems to constantly monitor and instantly alert Claritum’s systems administrators in the unlikely event of a breach.

Secure Connection

All of our systems are protected through the use of SSL-encrypted communications. This provides a similar level of security as most leading internet banking systems.

Server Data Integrity and System Continuity

On-Site Integrity

Claritum uses high-availability systems with multiply redundant hard drives carrying multiple copies of all data on the system. Should any of the drives fail, they can be replaced without interrupting the server at all which means no loss of data and complete business continuity.

Resilient Infrastructure

Claritum's infrastructure operates on a no-single-point-of-failure principle; each component is duplicated to offer not only fail-over cover but also rapid scalability should the need arise.

Multiple web servers, database servers, firewalls and load-balancers help ensure that even the complete failure of an entire machine cannot impact the continued operation of the infrastructure as a whole.

Customer-Owned Data Integrity

Upon request, we can arrange for scheduled copies of all data relating to your business, held on our servers, to be sent directly to you. The system also allows the downloading of specific data at any time via the Management Reporting Module.

Hosting

Claritum's hosting partner is Rackspace, out of appropriate local-based data centres. Their world-class hosting expertise and multiply-redundant network connections ensure that connectivity remains at 100% availability.

Physical Security

Each location is managed 24/7 by trained, uniformed security staff to provide a deterrent to unauthorized access. CCTV, with time-lapse videoing, both internally and externally provides information to a security control centre on possible intrusion. Proximity cards control access within the individual facility.

Emergency Response

Key Claritum personnel are notified 24/7/365 by any of our hosting providers’ administration staff should any critical situation arise. In the event of the server load switching over to the backup services, Claritum technical staff are notified and can attend to the situation in a matter of hours.