Security

World-Class Protection

With ClickBooks, not only are bookkeeping headaches removed, but so are many of the security issues that come with them. ClickBooks uses world-class, highly secure data centers with state-of-the art electronic surveillance and multi-factor access control systems. The data centers are staffed 24x7 by trained security guards, and access is authorized strictly on a least privileged basis. Environmental systems are designed to minimize the impact of disruptions to operations. And multiple geographic regions and Availability Zones allow us to remain resilient in the face of most failure modes, including natural disasters or system failures.

 

The ClickBooks infrastructure has been designed to provide optimum availability while ensuring complete customer privacy and segregation.

Built-in Security Features

Not only is your data protected by highly secure facilities and infrastructure, but they’re also protected by extensive network and security monitoring systems. These systems provide basic but important security measures such as distributed denial of service (DDoS) protection and password brute-force detection on ClickBook Accounts.

Additional security measures include:

 

  • Secure access 
    Customer access points, also called API endpoints, allow secure HTTP access (HTTPS) so that you can establish secure communication sessions with your ClickBooks services using SSL/TLS.

  • Built-in firewalls 
    We control how accessible our instances are by configuring built-in firewall rules – from totally public to completely private, or somewhere in between. And when our instances reside within a Virtual Private Cloud (VPC) subnet, we can control egress as well as ingress.

  • Unique users
    Our Identity and Access Management (IAM) tool allows us to control the level of access users have to your ClickBooks information. With IAM, each customer can have unique security credentials, eliminating the need for shared passwords or keys and allowing the security best practices of role separation and least privilege.

  • Multi-factor authentication (MFA)
    We leverage built-in support for multi-factor authentication (MFA) for use with our root Account as well as individual IAM user accounts under it.

  • Private Subnets
    Our Virtual Private Cloud (VPC) allows us to add another layer of network security to our instances by creating private subnets and even adding an IPsec VPN tunnel between offices.

  • Encrypted data storage
    ClickBooks has data and objects stored encrypted automatically using Advanced Encryption Standard (AES) 256, a secure symmetric-key encryption standard using 256-bit encryption keys.

  • Dedicated connection option
    We leverage a Direct Connect service allows us to establish a dedicated network connection from premise to premise. Using industry standard 802.1q VLANs, this dedicated connection can be partitioned into multiple logical connections to enable us to access both public and private IP environments.

  • Security logs
    ClickBooks leverages CloudTrail to provide logs of all user activity within accounts. We can see what actions were performed and by whom. The API call history produced by CloudTrail enables security analysis, resource change tracking, and compliance auditing.

Because the ClickBooks cloud infrastructure provides so many built-in security features, you can simply focus on your business.

We know that it’s important for you to understand the protection measures that are used to guard your information. But since you can’t physically touch the servers or walk through the data centers, how can you be sure that the right security controls are in place?

 

The answer lies in the third-party certifications and evaluations that our security vendor has undergone. Our vendor has achieved ISO 27001 certification and has been validated as a Level 1 service provider under the Payment Card Industry (PCI) Data Security Standard (DSS). Our Provider undergoes annual SOC 1 audits and have been successfully evaluated at the Moderate level for Federal government systems as well as DIACAP Level 2 for DoD systems.