Compliance with Data Protection Regulations:
Air Maestro staff do under go GDPR training and AM does comply with the relevant regulations and in please to say we hold ISO-27001 certification.
Air Maestro does encrypt all server drives, client data and backups utilising AWS KMS – (AWS Key Management Service (KMS) is a managed service that makes it easy for you to create and manage keys and control the use of encryption across a wide range of AWS services. KMS is a secure and resilient service that uses FIPS 140-2 validated hardware security modules to isolate and protect your keys.)
Air Maestro restricts access to client’s data but controlling support access via SSO with MFA attached to an AD group, have polices and auditing in place for access. Client also has the control over their staff access and user level rights. Air Maestro support clients integrating AM with their SSO.
Data Storage and Retention:
Air Maestro keeps all client data and backups within region access to servers and backups are restricted and audited.
Database backups and transaction logs are shipped to separate AWS account using N2WS software. Full database backups are sent daily with transaction logs transferred hourly.
Daily database backups for kept for 6 weeks,
A weekly full database backup is retained for 1 year and stored in AWS Glacier.
A monthly backup is retained for 10 years and stored in AWS glacier Deep Archive.
A daily database backup is also transferred to the Utility Account AU
AP-SE Region and retained for 4 weeks. Transaction logs are transferred to Utility Account AU AP-SERegion and retained for 3 days.
Server Image Backups:
AWS VSS Snapshot’s are performed on all twenty (20) EC2 instances and run four times a day 6 hours apart and retained in the Production Account in
Sydney. These Snapshots are retained for 7 days.
AWS Snapshots are transferred to the separate UTIL account twice per day 12 hours apart and retained in Sydney
AWS AMI Images are performed on servers every one (1) month when Windows updates are applied. Two (2) versions of images are retained for each EC2 instance.
Air Maestro is hosted in the AWS Cloud – AWS do adhere to the same privacy standards and have no access to the AM VPN where client data is held.