Data Wow takes data security very seriously, we are certified with ISO27001:2003 for our information security including but not limited to our physical security, development security, and infrastructure security.
All of our employees must be passed a background check and certified in information security awareness. Our technical staff and developers both web development and AI development are required to have extended knowledge of information security and secured system design. Our business processes are controlled with policy that takes security into consideration.
Our information assets are logged and secured following company policy to ensure our customers that data is secured and accounted for. We also regularly audit our information assets.
Standard Practice of System Development:
Data Wow is able to design our process to match with customer’s compliance requirements and can provide higher security levels as requested for a custom project of AI and Web Development. You can consult our sales team for additional information.
Our policy prevents unauthorized employees or system administrators from gaining access to personal user data without a legitimate reason. Limited exceptions may be made for customer support requests. Our company also implemented a need to know basis system where only relevant employees can access project information. All of our employees are signed a Non-Disclosure Agreement when joining the company to protect our customers’ information.
Our office are monitored and access controlled. All guests visiting our office are registered and logged.
The data processing facilities in the office have additional protections such as fire extinguishers for server room, SLA guarantee enterprise grade Internet connection, backup power, and encrypted data backup offsite for disaster recovery. We only use this facility to develop, train AI, and test systems, it does not serve for production environments.
Data Wow backs up all our critical information and assets and regularly performs a restore test on a backup to ensure swift recovery in case of disaster or failure. All of our backups are encrypted and saved to another location. Our RPO and RTO is shown on our products/services individually and can be customized per customers’ project requirements.
Data Wow also maintains Business Continuity Plan (BCP) for common risks of our businesses.
All of our production facing customers are run in the cloud. We do not host or run our own infrastructure such as routers, physical servers, and load balancers. Our service is hosted on certified providers who have ISO27001, SOC1, SOC2, and other requirements or compliance requirements.
Primary locations we hosted our services: Singapore, Japan (Tokyo)
Our network are designed for fault tolerant, we also monitor regularly and protect our network from unauthorized access using best practices such as:
Data Wow using TLS for data encryption in transit between our server and client. Sensitive data also encrypted when at rest. All sensitive data with a certain level of confidentiality will be required to encrypt on our employee computer. Confidential data that are sent outside of the organization also subject to encryption and/or password protected (e.g. sending file for customer via email)
All online payment transactions are not processed at Data Wow but instead outsourced to service providers with PCI DSS. No card information is stored at Data Wow server. Our payment processing are:
Drop us a line and we will get back to you