Here you can find information about the encryption of your data at rest and in motion, including answers to frequently asked questions.
Encryption of Data at Rest
Auto Insights leverages best-in-class cloud services with the option to exploit native data encryption services for the protection of client data. By default, all client data at rest (while it is stored on disks) is secured using (AES256) encryption.
Encryption of Data in Motion
Auto Insights employs industry-grade encryption (TLS 1.2 and TLS 1.3) for all web/HTTPS traffic.
Console access to Auto Insights services is limited to key operational staff and is protected through the use of SSH. SSH sessions are protected via an identity key rather than a password.
Frequently Asked Questions
Q: Do you support secure deletion (for example, degaussing/cryptographic wiping) of archived and backed-up data as determined by the tenant?
Yes, data no longer required may be permanently deleted within Auto Insights' Azure facility.
Unique Encryption Keys
Q: Are you able to generate unique encryption keys per customer/tenant?
No. Currently, data is encrypted with Alteryx Managed Keys and stored on Azure File Storage. Find more information on Azure storage encryption in this Microsoft help article.
Key Management Procedures
Q: Do you maintain key management procedures, such as documenting ownership for each stage of the lifecycle of encryption keys?
Encryption at Rest
Q: Is tenant data encrypted at rest (on disk/storage) within your environment?
A: Yes, data in the Azure storage blob is encrypted.
Platform and Data-Appropriate Encryption
Q: Do you have platform and data-appropriate encryption that uses open/validated formats and standard algorithms?
A: Yes, as provided by Azure storage.
Infrastructure Compliance and Monitoring
Q: Do you have the capacity to continuously monitor and report the compliance of your infrastructure against your information security baselines?
Q: Is DDoS protection in place?
A: Yes, basic Azure DDoS defense is provided by default and Azure DDoS Protection Standard can be activated if required.