Security at Juksta

Information Security is important to you and it's important to us.

GDPR Representative

Data encryption in transit

All customer data held by Juksta is encrypted in transit over public networks using Transport Layer Security (TLS).

Data encryption at rest

All data held by Juksta is encrypted with a minimum 256 bit cryptographic key. We do not store any data unencrypted.

The content of databases is encrypted at both the RDMS and file system layers. All files loaded into the application are encrypted before being stored, with versioning and additional two factor protection to prevent unauthorised deletion.

Pseudonymization

A core idea of GDPR is the pseudonymization of personal data. All information held within Juksta that relates to an identified or identifiable natural person ("data subject") is pseudonymised. Pseudonymization enhances your privacy by replacing your personal data with one or more artificial identifiers, or pseudonyms.

Backups

Automated database backups are made daily, and retained for 30 days. We also maintain replicas of our databases in different AWS regions, and take snapshots of these databases daily, retaining the snapshots for 30 days. All backups and snapshots are stored in multiple AWS EU regions, to guard against catastrophic failure of an individual AWS region.

Files loaded into the system are replicated to multiple AWS EU regions, to eliminate single point of failure. In the event a region becomes unavailable the application can failover to one of the secondary AWS regions to continue to provide access to your files.

Disaster Recovery and Business Continuity

We understand the importance to our customers of keeping our services online. We have a comprehensive set of business continuity and disaster recovery plans.

Our plans are reviewed and tested regularly to ensure that in the event of service disruption, inconvenience to our customers is minimized and we return to normal operations as soon as possible.

Product Security

Secure coding practices are baked into our development team to help ensure we maintain a consistently high quality of secure code.

Our team implements coding standards, branching policies, peer review and automated testing of software changes before changes can be accepted. We also run regular secure coding training sessions for Developers and DevOps.

Vulnerability Management

We run weekly vulnerability testing against up-to-date exploit libraries to catch potential problems as they arise. We also have external penetration testing conducted regularly as part of our Information Security Management System.

We implement standardised, hardened snapshots for all servers used by our application and perform system and security patches on our instances monthly, following a formal patch implementation policy.

Access to Customer Data

All customer data is sensitive, and we have a comprehensive set of policies and procedures in place to help us protect access to your data. We implement the principle of "least privilege", and staff are only provided access to information systems they require based on the role they perform. All staff access is reviewed periodically to ensure this principle is maintained.

Security Incident Management

We aggregate logs from our application infrastructure to enable us to monitor and review suspicious activity. We implement various alerts and procedures on how activities are investigated, escalated and responded to. We maintain access to appropriate security expertise internally, and where required through external subject matter experts.

Cookies

We use cookies to ensure that we give you the best experience on our website, to personalise our content and ads, analyse our site traffic and provide social media features. You consent to our cookies if you continue to use our website.
Essential
Analytics
Marketing

Essential cookies assist in making our website usable by providing functions such as navigation or access to secure areas of the site. They also may be used to help comply with legal requirements, such as GDPR. This website cannot function correctly without these cookies.

Name Provider Purpose Expiry Type
XSRF-TOKEN juksta.eu Helps prevent Cross-Site Request Forgery (CSRF) attacks. Session HTTP Cookie
juksta_session juksta.eu Preserves users states across page requests. Session HTTP Cookie
juksta_represent_session juksta.eu Preserves users states across page requests. Session HTTP Cookie
init_cookie_consent juksta.eu Helps manage cookie types preferences. 7300 days HTTP Cookie
cookie_consent juksta.eu Keep user selected cookie types. 7300 days HTTP Cookie
_ga Google Analytics Registers a Unique Identifer, used to generate statistical data on how the visitor uses the website for Google Analytics. 2 years HTTP Cookie
_gid Google Analytics Registers a Unique Identifer, used to generate statistical data on how the visitor uses the website for Google Analytics. 1 day HTTP Cookie
_gat_* Google Analytics Used by Google Analytics to throttle request rates, which means that it limits the collection of data on high traffic sites. 1 day HTTP Cookie

Analytic cookies help owners understand how visitors interact with their sites by collecting and reporting information.

Marketing cookies are used by 3rd parties to track users across websites with the intent to display advertising targeted to the individual user. There are no marketing cookies used by this website.