Transmission of Data
Clients transfer sensitive information to WALLACE through the use of a secure upload site using the highest industry standard SSL encryption to protect data at the transport layer.
Once the data has been securely transmitted to us, there is no website interface that gives access to the uploaded data.
Immediately upon transmission, our IT department and your project team are automatically notified and take steps according to WALLACE’s Acceptable Use Policy.
WALLACE can also accommodate other client-preferred encryption methods such as PGP.
Sensitive Data Encryption
The most sensitive information is encrypted and access is granted only to your designated WALLACE Financial Analyst and/or Project Manager.
The sensitive information can only be decrypted upon signed permission by a WALLACE officer and only for confirming the validity of a submission or in case of audit by a governing authority.
Sensitive Data Restricted Access
WALLACE grants access only to those individuals necessary to complete a project. These individuals are granted access only to the information they require to perform their duties.
Normally only the Financial Analyst, Project Manager, and specific Officers have access for the purposes of document/application review.
Email Security
WALLACE maintains a secure internal email infrastructure to allow for secure communication between our employees while working on client projects.
System Backup
WALLACE uses an encrypted mounted volume for backups and stores the encrypted data in a secure offsite location.
Backups are maintained according to WALLACE disaster recovery policies and procedures.
Physical Security
Visitors and vendors are not allowed on premises without an employee escort. Premises require authentication before entry outside of business hours.
Physical access to computing facilities where data is stored requires additional biometric authentication prior to access.
