Global Solutions for Knowledge Assurance
Sicherheit
Print E-mail this page

Enlight Security Policy

Enlight understands that the security of your personal information and business details is important to you. This Security Policy has been established by Enlight AB ("Enlight") as part of our commitment to the security and confidentiality of your information and data. Personally identifiable or business identifiable information transferred to and from Enlight online services is all handled through secure servers. Some parts of the Enlight online services have been secured with a digital certificate, to ensure authenticity.

User identification

  • Each user selects his/her own password in the Enlight online services.
  • The users’ passwords are stored in a one-way encrypted format and are not accessible to employees of Enlight.
  • After entering the required registration information as a new user you will be able to access your user account immediately.
  • The password is chosen directly as part of the registration process and not sent to you by any other means. Passwords have a minimum length, and requires a combination of letters and numbers.
  • Upper and lower case letters can both be used, and are viewed as different characters, to make it more difficult to compromise.
  • Each time you login to the system you will be required to authenticate your identity by entering your previously supplied e-mail address and password. Upon successful login, you are issued a unique "session id" (does not include any personally identifiable information) which allows you to remain active as long as actions are performed in the system at regular intervals. If you wait too long between performing actions in the system, you will need to log in again. If an incorrect password is supplied, or if you simply forget your password, you may need to re-establish your identity following the instructions above.
  • After a number of unsuccessful login attempts, you will be locked out.

Protection of information being transmitted

Enlight uses encryption technology to ensure the safe transmission of your information and documents when logged into the system for users of the current versions of Enlight's online services. Your browser provides security by allowing us to use Secure Socket Layer (SSL) encryption up to 128-bit key length encryption when transmitting information and documents. The number of bits of secret key length varies between 40 and 128 depending on your browser’s capability. All communication between your computer and Enlight’s current online services is encrypted using SSL.

Protecting your stored information

Enlight takes many measures to protect user and Candidate information, including:

  • Utilizing a firewall to protect our servers and stored information, preventing unauthorized users to access to our systems.
  • Monitoring system and application activity logs to identify any unusual activity, from authorized and/or unauthorized individuals accessing our systems and/or making changes to stored information, for investigation.
  • Housing our servers highly secure facilities to provide additional protection against unauthorized access and changes to stored information.
  • All employees at Enlight are bound by a confidentiality and non-disclosure agreement prohibiting access to and dissemination of information handled by the company’s users when using the Enlight online services.

Internet connection and systems facilities

The Enlight online services use hardware and software components providing a high degree of security, availability and reliability.

  • Large bandwidth redundant Internet connections to one of the main Internet connection points and redundant routers with fail-over configuration.
  • Highly secure computer facilities with cooling systems, UPS, backup systems and fire protection. Differential backups.
  • Complete backups.
  • Storage of backups on off-site.
  • Separate off-line long-term backup storage.
  • Enlight has implemented routines for restoring backed up data.

Availability and Accessibility

  • Enlight undertakes to adopt reasonable measures in order to ensure that the Enlight online services service is available as agreed in Services Level Agreement. Enlight will at times take measures that affect the availability and accessibility of the Enlight online services where Enlight deems this to be necessary for technical, maintenance, operational, or security reasons.
  • Users shall be aware and acknowledges that the user's access to the Internet cannot be guaranteed and that Enlight shall not be liable for problems in the user’s own Internet connections.
  • In the event of defects or deficiencies in relation to agreed Service Level Agreements attributable to Enlight, Enlight undertakes to act to rectify such defect without unreasonable delay. In the absence of intent or gross negligence by Enlight, Enlight otherwise assumes no responsibility for defects or deficiencies in the Enlight online services service. Error notification must be given by the customer in accordance with the instructions announced by Enlight from time to time and within a reasonable time of the discovery of the defect.

Changes in this policy

Enlight reserves the right to modify or amend this Security Policy at any time and for any reason.

Contact information

If you have any questions about this Security Policy or any other inquiries, please contact: Enlight AB, Oxtorgsgatan 2, Box 7064, 103 86 Stockholm, Sweden, +46- 8-790 3900, info@enlight.net. Version 1.1, Revised August 31, 2004

© 2008 Enlight AB. Alle Rechte vorbehalten
Geschäftsbedingungen Sicherheit Vertraulichkeit