Security FAQ

Certified for SOC 2 Type II, by the American Institute of Certified Public Accountants

Jopari is committed to providing you a secure infrastructure  that is compliant with state and federal security regulations to protect your information. Jopari used an independent auditor that has verified that our security practices and contractual commitments comply with state and federal security regulations.

“How do I know that other customers sharing the same servers can’t access my data?”

Your data is logically protected as if it were on its own server. Unauthorized parties cannot access your data.  In fact, all user accounts are protected by this secure architecture that ensures that one user cannot see another user’s data. This is similar to how customer data is segmented in other shared infrastructures, such as online banking applications.

“How does Jopari protect against hackers, hacktivists, governments and other intruders?”

Our data center is built with custom-designed servers, running our own operating system for security and performance.

Jopari’s data center use custom hardware running a custom hardened operating system and file system. Each of these systems has been optimized for security and performance. Jopari has 24/7 security monitoring controls in place that allow us to able to quickly respond to any threats or weaknesses that may emerge. All data is encrypted in transit and at rest per the National Institute of Standards and Technology (NIST) guidelines that comply with state and federal security mandates. To protect against intrusion our Jopari PGP Key is RSA 2048, SHA-2-256 and AES 256. The keys are change periodically as another security compliance control.

“Does Jopari encrypt my data?”

Yes, your data is encrypted at three different levels. In transit the data is encrypted using 256-bit Transport Layer Security (TLS) and at rest in a flat file PGP3. Your data is also encrypted in the Data Base using AES 256-bit Transport Layer Security (TLS).

“How do we know you do what you say?”

Jopari’s applications are certified for SOC 2 Type II, by the American Institute of Certified Public Accountants (AICPA). This means that an independent auditor has examined the controls protecting the data in our systems (including logical security, privacy, and data center security), and assured that these controls are in place and operating effectively.  For Inquires relating to Jopari’s SOC2 Type II certification, please contact info@jopari.com for more information.