With users across small, medium and large companies using our services, ensuring the confidentiality, integrity, and availability of customers' systems and data is vital for us. We take security very seriously and have developed a comprehensive set of practices, technologies and policies to help ensure your data security.

This document outlines some of the mechanisms and processes we have implemented to help ensure that your data is protected.

Daffodil banks upon the hosting and data security expertise of renowned third party service providers. We host our Applane product suite on Amazon Web Services (AWS) thus ensuring the highest level of cloud computing service and data security processes.

An overview of the security policies followed by AWS can be had from the following link: http://developer.amazonwebservices.com/connect/entry.jspa?externalID=1697

People Processes

Designing and running data center infrastructure requires not just technology, but a disciplined approach to processes. This includes policies about escalation, management, knowledge sharing, risk, as well as the day to day operations. Daffodil has developed a world class practices for managing security and data protection risk.

• Select employees. Only employees with the highest clearance have access to our data center data. Employee access is logged and passwords are strictly regulated. We limit access to customer data to only a select few of these employees who need such access to provide support and troubleshooting on our customers' behalf.
• Audits. Audits are regularly performed and the whole process is reviewed by management
• As-needed basis. Accessing data center information as well as customer data is done on an as-needed only basis, and only when approved by the customer (i.e. as part of a support incident), or by senior security management to provide support and maintenance.