Data Security

DATA SECURITY MANAGEMENT

Summit’s information systems are hosted at primary and fully-redundant back-up Rackspace SSAE 16, Type II facilities to ensure compliance with data security requirements of the Gramm-Leach-Bliley Act, which requires financial institutions – companies that offer consumers financial products or services like loans, financial or investment advice, or insurance – to explain their information-sharing practices to their customers and to safeguard sensitive data. Rackspace deploys a multi-layered physical security approach consistent with the requirements defined  in ISO 27002.

Only Rackspace Data Center employees are allowed to access the server/production floor. All Rackspace employees are screened prior to employment (background check, employment check, criminal background check, etc.). The entry to the server/production floor is controlled by a finger print scanning biometric device and proximity access cards. Internal and external surveillance cameras are deployed to all Rackspace facilities monitoring zones 24/7 with CCTV/DVRs as an extra safeguard against unauthorized access. Visitor access is strictly controlled.

In addition, all Summit employees undergo an extensive pre-employment background check.