Postini and SPAM in a BOX Security Statment

SPAM Security
Solution | Email Security | Compliance | Resource Centre | Platform | Customers | Company
  Postini and SPAM in a BOX Security Statment  

The security of Postini® resources and customer information is a top priority. Postini understands that customer trust is built over time, and that even a minor infraction can destroy months and years of hard work. To that end, Postini treats user data as a valuable asset and builds its services on industry-standard technologies that offer the highest levels of security, availability, and fault tolerance. In addition to adhering to the Postini Privacy Statement, Postini applies technology and operations practices that are designed to ensure that user data is secure:

  • Automated services. All email processing services are carried out automatically by software processes, not by human beings. Postini employees and partners never examine the contents of customer email passing through our system, except as required by law or as permitted by the customer.
  • SSL and password encryption. Users log in to the Postini Message Center through SSL (secure sockets layer), the standard in Internet security for authentication and encryption. Passwords are always encrypted before they are transmitted.
  • Discrete, authenticated sessions. Postini grants access to the user's account from the browser. To end the session, the user either logs out or leaves the session inactive for 20 minutes. After the session has ended, user data can no longer be accessed without user re-authentication.
  • Restricted access. Postini protects centralized databases and storage systems by preventing access from the public Internet. Postini web and mail pre-processing servers act as gatekeepers to data, limiting access only to account owners. All user information, not just highly sensitive information, is restricted to our operation centers. Postini also utilizes VeriSign's certificate management system for added security.
Security remains the primary concern of on-line consumers. Postini participates in the VeriSign Secure Site Program, which verifies that:
  • This site has a VeriSign Secure Server ID.
  • VeriSign has verified the organizational name and that POSTINI INC has the proof of right to use it.
  • This site legitimately runs under the auspices of POSTINI INC.
  • All information sent to this site, if in an SSL session, is encrypted, protecting against disclosure to third parties.
For more information about security, please contact us.
Postini and SPAM in a BOX Privacy Statement
Copyright 2004, SPAMinaBOX.co.za