The protection of your personal and financial information is critical to your Vaults service delivery. We utilize the latest in technology and security protocols, updated constantly to ensure your information is safeguarded and your privacy is respected. Only you, or those you choose can access your account. Some of our safety protocols include:
When registering you will receive a unique username and a temporary password. When you log in for the first time you will be asked to change the temporary password for a personal password, which will allow you access your account information via our online Member Logon Site. This information is encrypted during transmission.
The system will automatically terminate your session after 30 minutes of inactivity. This reduces the risk of others accessing your information from your unattended computer.
The uses several forms of encryption conforming to FIPS certification. FIPS certified encryption is (FIPS) 140-2 - a U.S. and Canadian government standard to accredit software and hardware cryptographic modules. Cryptographic modules offer encryption and decryption algorithms which are used to protect the information when it is stored or transmitted. Established by the National Institute of Standards and Technology in the U.S. and the Communications Security Establishment (CSE) in Canada, FIPS 140-2 was designed to ensure that all U.S. Federal Government departments or agencies only purchase and use cryptographic products that securely protect their unclassified, but sensitive data. This is believed to be the strongest form of encryption today.
Whether your are using our desktop application or our web based model all information during transmission or at rest is encrypted using FIPS encryption algorithms.
During the development of our web application, the Watchfire Appscan
Security application is used to test situations and
potential security vulnerabilities prior to the launch of
the live web site. Appscan is the marketing leading web
application security assessment software that accurately pin
points critical vulnerabilities and manages the process of
fixing them.
Visual
image verification as additional security when you are
entering your user and password. You will notice this on the
login page as a distorted image. What this does is that it
stops computers from automatically trying to hack into the
system by trying a multitude of username and password
combinations for the distorted verification must be entered
by an individual.
We use a two-way
authentication process. It refers to our members
authenticating themselves to the server and that server
authenticating itself to the user in such a way that both
parties are assured of the others identity.
Our servers are protected 24
hours a day by continually updated firewalls that block
unauthorized entry as well as provide physical protection. Stored in
the Primus data house only authorized individuals, confirmed
by retinal scan and other biometric devices are allowed
access to the servers.
The Vault and our ISP Primus
communications maintains and monitors our security systems
to make sure that your information is never compromised and
that your data is safe and secure.
The Vault's security blanket extends
beyond everything above. We have built in additional
security measures such as notification of a change in
password, session id's and a variety of other code based
protocols that are used to consistently monitor and advise
us should there be suspicious online behaviour.
These measures add another layer of protection to your
information.
To resist constantly evolving online
threats, we have adopted some of the
strongest security technology available today to protect
your data. It is our commitment to continually adopt
the newest and strongest security protocols as they are developed and deploy them so that your
data is always protected.
