Our system is set up to protect individual deal metrics in a number of ways:
- Transaction information is inputted without any reference to the company or the private equity sponsor.
- While we obviously know the participating firms and track the number of deals put into the system, we see data from a minimum of five firms at a time. This batching impedes our ability to identify particular transactions.
- If we have questions on submitted data, we communicate with participating firms through the on-line utility. Participating PE groups are free to contact us directly – and many do – but we won’t be the ones to breach the wall.
- The on-line utility is a “one-way street” – it can be used for inputting information but not for retrieving it. The system simply won’t accommodate a user attempting to retrieve information, in good faith or otherwise.
- GF Data reports organize valuation detail by NAICS code. We drill down to the finest level of detail at which we have three data points. Individual transactions are not profiled, even on a no-names basis.
Hosted Coriendo solutions come with security to ensure that your data is never compromised.
The security measures at Coriendo include:
- Experienced, professional engineers and security specialists dedicated to round-the-clock data and systems protection
- Continuous deployment of proven, up-to-date security technologies
- Ongoing evaluation of emerging security developments and threats
- Redundancy throughout the online infrastructure
Confidentiality, Integrity and Availability:
Coriendo uses Amazon Web Services (AWS) as infrastructure. AWS is among the world’s largest cloud providers, and many other companies use the Amazon platform. Amazon handles all the infrastructure associated with physical security, such as power, cooling, and internet connections. Amazon offers its AWS hosted in several locations worldwide. However, Coriendo is using the Amazon data centers in the US-East (Virginia).
Application server is hosted on Amazon EC2 virtual servers with Linux Centos Server, Java, Tomcat. Remote access to servers are limited. HTTP and HTTPs web access is allowed. The database is Postgresql 9.3 with access limitation. Web server is using Godaddy SSL certificate. Amazon provides firewalling and filtering services and the Linux based firewall on the web servers allows only SSH, HTTP and HTTPS.
Every midnight automated backup script take AWS snapshot of EBS (Elastic Block Store – HDD) and transferred on to AWS s3 service.
Apart from this, the file/folder level data (DB dump, attachments) synchronized to AWS s3 service.
Amazon S3 designed to deliver 99.999999999% durability, and stores the data. S3 provides comprehensive security and compliance capabilities that meet even the most stringent regulatory requirements. It gives customers flexibility in the way they manage data for cost optimization, access control, and compliance.
Operating System Security:
Coriendo enforces tight operating system-level security by minimizing the number of access points to its production servers. We protect operating system accounts with strong passwords, and production servers do not share a master password database. All operating systems are hardened by disabling and/or removing any unnecessary users, protocols, and processes.
Server Management Security:
All data and documents entered into the Coriendo solutions by its customers owned by that customer. Coriendo employees do not have direct access to the production equipment, except where necessary for system management, maintenance, monitoring, and backups. Coriendo does not utilize any managed service providers. The Coriendo systems engineering team provides all system management, maintenance, monitoring, and backups.
- Security Model
Our application security model prevents one customer from accessing another’s data. This security model is reapplied with every solution and enforced for the entire duration of a user session.
- User Authentication
Users access Coriendo hosted solutions only with a valid username and password combination, which is encrypted via SSL while in transmission. An encrypted session ID cookie is used to uniquely identify each user.
- Database Security
Whenever possible, database access is controlled at the operating system and database connection level for additional security. Access to production databases is restricted to a limited number of points, and production databases do not share a master password database.