The Trisotech Cloud infrastructure is hosted in Quebec, Canada in the OVH secured data center under the Canadian Federal privacy law as well as Quebec provincial privacy act.
Trisotech guarantees the data center infrastructure where customer data is stored complies with International standards and is certified for ISO/IEC 27001:2013 and externally audited according to SOC 2/3 type II and ISAE 3402 type II.
Trisotech guarantees that its data center provider complies with the ISO 27001:2013 norm. This norm certifies that the required security measures and management procedures are in place.
Trisotech guarantees that its data center provider is externally audited regarding the design and operating effectiveness of its controls relevant to security.
All communication between our customers and Trisotech data center is encrypted using an SSL certificate through protocol such as Secure HTTP (https). We also have internal monitoring and control in place to follow the best practices regarding protocols, key exchange and cipher algorithms.
The Trisotech solutions rely on external User Authentication. The following authentication and Single Sign On (SSO) technologies are available:
Trisotech also provides, free of charge, an independent user authentication mechanism called “Trisotech Account”. These accounts guarantee the email ownership and provide password management and resets. All Trisotech Accounts password are encrypted using secured 1-way hash encryption.