Security is a critical requirement for placing your data privacy in Cloud App Security. Certified by ISO 27001, Cloud App Security ensures that your data is protected and used in a transparent manner while providing advanced protection for cloud applications such as Office 365 services, Box, Dropbox, Google Drive, and Gmail.
The efforts to implement privacy and data protection measures fall into the following areas:
Cloud App Security follows mature and stringent product development processes and utilizes industry-leading tools and methodologies to perform source code defect scan and vulnerability scan, executing professional penetration tests by Trend Micro InfoSec team, thus to ensure the service itself robust yet secure.
It stores data in the multi-tenant environment using the solid database service and applies access control policies that protect sensitive information from unauthorized access. In a mature multi-tenant SaaS architecture, sufficient security checks are adopted to ensure data security, data segregation and prevent access to data of one tenant by users from other tenants.
Cloud App Security is designed by taking a "privacy by design" approach.
"Privacy by design" is an approach to projects that promotes privacy and data protection compliance from the start. Cloud App Security does not store your data during scanning and stores quarantined objects within your own cloud application storage.
At the same time, cache data that Cloud App Security builds is just a hash value and cannot be converted back into original email messages or files. Cloud App Security communicates with supported cloud applications using web services over HTTPS.
Cloud App Security is hosted on Microsoft Azure in Azure's West US, West Europe and Japan East data centers.
Its cloud sandbox is hosted on Trend Micro data centers that are certified by ISO 27001. Currently, Cloud App Security in the U.S. (global) and Japan sites connects with the U.S. cloud sandbox data center, and Cloud App Security in the EU site connects with the EU cloud sandbox data center. Cloud App Security environments in different regions operate independently and are not interconnected for data privacy and sovereign considerations, and your data will always stay within your own region and cannot be replicated by other regions.
To protect privacy during service operation, the Cloud App Security team applies mature operational practices, including management console access control, operation monitoring and auditing.