Security Statement

At Jumble we take the security of your data very seriously. This Security Statement outlines the manner in which Jumble ensures that our customer experience is safe and secure. This Security Statement applies to the https://www.jumble.io website ("Site") and all products and services offered by Jumble.

Payment Cards

Card Processing

When subscribing to Jumble’s service you are requested to enter your payment card details. These card details are never held within Jumble’s platform or servers. They are held with our third party card-handling partner Stripe. Stripe (https://stripe.com) is compliant with the global PCI standards for secure handling of payment card information. Further information on Stripe’s security credentials can be found at: https://stripe.com/help/security

Information & Access

Data Security

We are committed to protecting the security of your Data. We use a variety of security technologies and procedures to help protect your Data from unauthorised access and use. As effective as modern security practices are, no physical or electronic security system is entirely secure and given enough time and resources it may be possible for a malicious third party to gain access to your information. We cannot guarantee the complete security of our Site, nor can we guarantee that information you supply will not be intercepted while being transmitted to us over the Internet. We strive to ensure that your privacy is safeguarded at every level of our organisation. We will continue to revise policies and implement additional security features as new technologies become available. Where you have chosen a password, you are responsible for keeping that password confidential and for ensuring that your password is of suitable length and complexity to prevent someone from guessing your password. We ask you not to share your password with anyone.

The transmission of information via the Internet is not completely secure. Although we will do our best to protect your Data, we cannot guarantee the security of your Data transmitted to or through our Site. Any transmission of Data is at your own risk. Once we receive your Data, we use appropriate security measures to seek to prevent unauthorised access.

Note: Jumble does not have access to email data.


Encryption

All data transmitted to and from our Site and software happens over an encrypted SSL tunnel using 128-bit AES and 2048-bit RSA encryption. Jumble does not support unencrypted connections.

All data stored in Jumble systems is encrypted at least once, with some data items being multiply encrypted, e.g. encrypted data stored on an encrypted hard disk.

Infrastructure and Hardware Security

Firewalls

Jumble’s computer systems are physically and virtually protected around the clock. Jumble uses the latest, cutting edge firewall technology to ensure our systems are protected from external threats.
Jumble uses intrusion detection and intrusion prevention systems in order to defend against attacks on Jumble infrastructure.

Server security and location

Jumble servers are located in European data centres managed by a world renowned web service provider. These servers are protected by 24-hour security, CCTV cameras and a number of other physical controls. They are also backed up to a secondary, fully secured location.

Additional notes on physical security:

  • All vehicle access roads, entrances and server rooms are monitored with video surveillance equipment.
  • A generated password enables on-site personnel to authenticate and issue a transponder key for the interlocking doors to the rack. The visit is logged and the footage recorded is archived in the administration interface for monitoring purposes.
  • The uninterrupted power supply is guaranteed by a 15 minute battery capacity and emergency diesel-generated power. All UPS systems are designed redundantly.
  • Direct free cooling allows for the environmentally friendly cooling of hardware. Climate control is affected via a raised floor system.
  • A modern fire detection system is directly connected to the fire alarm center of the local fire department.


Changes to this Security Statement

Jumble has the discretion to update this Security statement at any time. When we do, we will post a notification on the Site, revise the updated date at the bottom of this page and send you an email. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this Security Statement periodically and become aware of modifications.

Contacting us

If you have any questions about this Security Statement, the practices of this site, or your dealings with this site, please contact us at:
https://www.jumble.io
hello@jumble.io

This document was last updated on May 29, 2015