Recently, we announced a new Arlo data center in Canada. We have again added to our growing list of secure data storage centers around the world with a new center in the US. This new data center based in Oregon, US, adds to our list of Canada, Ireland and Australia.
With a growing number of customers in North America requiring local hosting for compliance, it was an essential addition to Arlo’s geographic diversity. This adds to Arlo’s growing list of services in North America, including a local office and employees, and 24/7 support.
This gives customers another choice of where their data resides. By default, Arlo will store customer data in the location that is closest to your business. For most businesses, the storage location doesn’t matter, but for some businesses they are required by regulators to store data in-country. For example, some healthcare providers in the US are required to store data locally, and many European customers require local storage for GDPR compliance.
How is my data stored and is it secure?
Arlo uses Amazon Web Services (AWS) for data storage. AWS is the world’s leading provider of cloud storage and models best-practice data protection and privacy.
- Customer data is segregated using isolated databases, each with independent logins by infrastructure components.
- Application components have database access specific to their function based on least-privilege principles.
- Website pages and resources are served over secure HTTPS.
- Database backups at rest are encrypted using AES-256.
- Servers are protected by a Web Application Firewall, VPC segregation, IP-restricted port access and hardened OS configurations.
- Servers are regularly updated with vendor patches for known vulnerabilities. Out of band releases for urgent updates are applied as early as possible.
- Access details for server access is restricted to a limited number of senior Arlo infrastructure staff in possession of physical tokens with encrypted details for server access.
- Data center facility security operated by Amazon Web Services (AWS)
AWS physical security:
- Data center access limited to AWS data center technicians
- Biometric scanning for controlled data center access
- Security camera monitoring at all data center locations
- 24×7 onsite staff provides additional protection against unauthorized entry
- Unmarked facilities to help maintain low profile
- Physical security audited by an independent firm
AWS operational policies:
- ISO17799-based policies and procedures, regularly reviewed as part of a SAS70 Type II audit process
- All employees trained on documented information security and privacy procedures
- Access to confidential information restricted to authorized personnel only, according to documented processes
- Systems access logged and tracked for auditing purposes
- Secure document-destruction policies for all sensitive information
- Fully documented change-management procedures
- Independently audited disaster recovery and business continuity plans in place for AWS headquarters and support services
Arlo’s support team is here to help, 24/7. If you have any questions about Arlo’s data security, feel free to reach out.