Authentication and Authorization
The DigitalChalk system requires all users to login (authentication). All pages except the login are based on the users role and the content they have purchased or been granted access to. The system dynamically generates a personalized page for each user. The Web URL associated with that page is only accessible by that specific user when they are logged in. During the process of creating an account, DigitalChalk adds additional levels of security such as email confirmation and Captcha image recognition.
DigitalChalk software is written using the latest in secure Web technology. For your security protection we do not reveal the underlying technologies being used. We can verify that DigitalChalk employs a modular architecture that does not have direct database access or direct connections to the underlying systems. The system uses SSL security for all pages that contain sensitive information such as user login or credit card payment. DigitalChalk uses PCI compliant payment processing.
System Security and Backup
The DigitalChalk system is housed on the Amazon Web Services (AWS) cloud platform with redundant data centers across the US and in some cases Europe. AWS has achieved ISO 27001 certification and has successfully completed multiple SAS70 Type II audits. The servers are secure, backed up hourly and monitored 24x7 for failure and attempted intrusion.
For more information about the Amazon Web Services data center and security please visit http://aws.amazon.com/security/