All agency data is stored on a datacenter that complies with the FBI CJIS Security Policy (Microsoft Azure Government datacenter). Our virtual infrastructure is managed by team members who have undergone FBI CJIS Security Addendums/Security Awareness Training and fingerprint-based background checks.
MediaNexus has implemented several security measures to control and protect customer data access. These measures include controlling customer access at layer 7 of the OSI model via the web application interface over HTTPS, establishing IP whitelisting and blacklisting at layer 4, and marking customer data at layer 3 to ensure appropriate segregation. We also use a web application firewall to detect and prevent threats in real-time, and conduct frequent penetration testing to validate the effectiveness of our security measures and identify potential vulnerabilities.
The data of all users is encrypted both at rest and in transit to ensure their security. When data is in transit, we implement robust SSL/TLS protocols, specifically using TLS 1.2 with a 256-bit connection. This ensures that data is protected as it is transmitted between users and the server. Moreover, data at rest is encrypted with a minimum of 256-bit AES to ensure that any data stored on the server is also protected from unauthorized access.
MediaNexus acts as a Data Processor of an agency's content. The agency controls and owns all rights, title, and interest in and to its content. This means that the agency retains full control over the use, management, and disposal of its content. MediaNexus obtains no rights to an agency's content and is solely responsible for the uploading, sharing, withdrawal, management, and deletion of an agency's content in accordance with the agency's instructions and applicable laws and regulations.
Invest in MediaNexus and experience the peace of mind that comes with knowing your media is secure and compliant.
