Dokka is committed to protecting the confidentiality, integrity and security of our customers. We use a variety of industry-standard security technologies and procedures to help protect your Information from unauthorized access, use, or disclosure.
As part of our focus for customer data protection and security awareness, we implemented development and operational processes in place to make sure we protect the most valuable asset we have - customer data.
Security protection by design
The development process in DOKKA puts the data protection and security constraints as
Every new design being audited by the team in order to make sure that new functionality will be developed using best practices and recommendations for security and data protection.
DOKKA services are hosted in Microsoft Azure cloud infrastructure which provides best-in-class data protection and security compliance infrastructure:
- ISO/IEC 27001:2013 , 27017:2015 , 27018:2019, and ISO/IEC 9001:2015
- SOC 1,2,3
- Azure compliance information and audit reports can be found here:
Data access authorization
Access to DOKKA data center is fully protected by Azure network firewall and only authorized employees have the permissions to access the service from authorized hosts:
- TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
Access roles and permissions are periodically reviewed by the DOKKA information officer.
DOKKA has full isolation between development and production environments and customer data is stored only in production environment.
Only authorised employees can access customer data in the production environment in order to resolve customer reported issues.
Any access to the production environment fully monitored and logged.
No third-parties and/or service providers have access to the data center.
Data access protection
Access to DOKKA web application and API end-points is protected by:
- SSL, SHA-256 with RSA Encryption
- 2 hours valid Password, SHA-256 encryption, with salt
Web and mobile application clients authenticate with DOKKA public APIs using stateless application tokens encrypted with AES symmetric encryption ( 64 bit AES) with salt (64 bit). Token information never stored at DOKKA services.
Data protection in transfer and rest
Customer data is stored in Azure cloud infrastructure and encrypted in transfer (2048 bit SSL certificate) and rest.
All user credentials are stored one-way hashed and not retrievable as open text.
Dokka periodically backup customer data, backups are encrypted and stored in a multi-region environment.
Backups are available for immediate disaster recovery allowing fast disaster recovery in case of service fault.
Customers can also configure private external cloud storage to be used as a backup storage account additionally to DOKKA storage.