Data Security

Your Data Is Secure

PrintScan uses Microsoft Azure to keep your data safe in the cloud.

Our demographic entry pages are designed to provide the operator with a clean and easy to navigate user interface. The text boxes are large and clear with a crisp custom designed round edge to provide a professional look and feel. Drop down boxes are used to show allowable values on certain fields such as hair, race, sex and country of origin. Data fields are validated and background indicators are used to show fields that are mandatory.

Microsoft has leveraged its decades-long experience building enterprise software and running some of the world’s largest online services to create a robust set of security technologies and practices. These help ensure that Azure infrastructure is resilient to attack, safeguards user access to the Azure environment, and helps keep customer data secure through encrypted communications as well as threat management and mitigation practices, including regular penetration testing.

Managing and controlling identity and user access to your environments, data, and applications by federating user identities to Azure Active Directory and enabling multi-factor authentication for more secure sign-in.

Encrypting communications and operation processes.

For data in transit, Azure uses industry-standard transport protocols between user devices and Microsoft datacenters, and within datacenters themselves. For data at rest, Azure offers a wide range of encryption capabilities up to AES-256, giving you the flexibility to choose the solution that best meets your needs.

Securing networks

Azure provides the infrastructure necessary to securely connect virtual machines to one another and to connect on-premises datacenters with Azure VMs. Azure blocks unauthorized traffic to and within Microsoft datacenters, using a variety of technologies. Azure Virtual Network extends your on-premises network to the cloud through site-to-site VPN.

Managing threats.

To protect against online threats, Azure offers Microsoft Antimalware for cloud services and virtual machines. Microsoft also employs intrusion detection, denial-of-service (DDoS) attack prevention, regular penetration testing, and data analytics and machine learning tools to help mitigate threats to the Azure platform.

Azure Storage for EFTS

PrintScan utilizes Microsoft's Cool Blob Storage for the at-rest encryption of your archived fingerprint files.

Microsoft Azure is strongly committed to helping us protect and safeguard your data to meet your organizational security and compliance commitments. PrintScan utilizes Storage Service Encryption (SSE), which automatically encrypts your fingerprint data when writing it to storage, and decrypts your data when retrieving it. The encryption and decryption is automatic and completely transparent and uses 256-bit AES encryption, one of the strongest block ciphers available.

Azure SQL Database

Azure SQL Database transparent data encryption helps protect against the threat of malicious activity by performing real-time encryption and decryption of the database, associated backups, and transaction log files at rest.

Transparent Data Encryption encrypts the storage of an entire database by using a symmetric key called the database encryption key. In SQL Database the database encryption key is protected by a built-in server certificate. The built-in server certificate is unique for each SQL Database server. Microsoft automatically rotates these certificates at least every 90 days.

Compliance

Microsoft Azure conform to global standards

Microsoft Azure meets a broad set of international and industry-specific compliance standards, such as ISO 27001, HIPAA, FedRAMP, SOC-1 and SOC-2, as well as country-specific standards like Australia IRAP, UK G-Cloud, and Singapore MTCS.

Rigorous third-party audits, such as by the British Standards Institute, verify Azure’s adherence to the strict security controls these standards mandate. As part of Microsoft's commitment to transparency, you can verify our implementation of many security controls by requesting audit results from the certifying third parties.

When Microsoft verifies that their services meet compliance standards and demonstrates how they achieve compliance, that makes it easier for PrintScan to secure compliance for the infrastructure and applications we run in Azure.