You don’t have to choose between convenience and security.
“User only” access to your information and data files, end-to-end encryption, and a world class “lights out” data center
Best-in-Class Data Protection
Multi-factor secure access, biometric login, and continuous system monitoring and backups
Routine security checks and daily 3rd party audits to ensure that your information is safe
“For too long our vital information was not as mobile as our lifestyle. That has changed with LifeSite. And by obsessing on security from the start, LifeSite has separated itself from other solutions.”
– Morgan Wright, International Cyber Security Expert and National Advisor on Cyberterrorism
Our Pledge: Privacy, Protection, and Peace of Mind
We can never say it enough. We understand how important your confidential information is, and we’re committed to keeping it that way. We will never sell, rent, or otherwise abuse the private information you have entrusted us with. That’s why our privacy and security protocols start with protecting your password and encrypting your information during and after transmission. We use layered encryption and unique encryption keys to keep everything safe.
We encrypt every single piece of information and all documents, including your name and email address. Your uploaded files are segmented into pieces, and each piece is stored separately, making the files unreadable in storage. We also use unique user encryption keys. As an added level of security, each unique user key automatically rotates on a periodic basis to ensure that your information is secure.
Only you and those you trust can access your information. Even LifeSite employees cannot access your information or files.
Your password must meet minimum strength requirements in order to ensure maximum security. Your idle time in LifeSite Vault and all failed login attempts are monitored to prevent unauthorized access. Your LifeSite Vault password is encrypted and never stored or transmitted in plain text.
Multiple factors of authentication decrease the risk of unwanted visitors accessing your LifeSite Vault account. Access first requires your password, and then a one-time password code sent to your cell phone for an extra layer of protection. The LifeSite Vault mobile application also uses biometric identification with fingerprint access.
LifeSite Vault is a zero-knowledge system, which means end-to-end encryption is used so that the information in your Vault is never stored or transmitted in plain text. LifeSite leaves no data on your computer or device.
The information and files uploaded to your LifeSite Vault are protected with high-level SSL-SHA256 – this means you have a secure connection between your internet browser and the LifeSite website, allowing you to transmit private data online.
LifeSite Vault combines secure data access with secure file access and high-level document encryption and security, to provide you with a safe and smart digital storage solution. Industry-leading internet security is used when transferring your data via SSL/TLS trusted 2048-bit certificates In addition to securing your data and files during transmission to LifeSite Vault, they are also protected while stored in LifeSite Vault using military grade 256-AES (Advanced Encryption Standards). For added security, your uploaded files are segmented into pieces with each piece stored separately. This ensures your files are unreadable while in storage.
The most current version of your data is instantaneously backed up across multiple systems to guard against disaster.
Data Center Security
Our data centers have 24/7 security and monitoring, flood/fire detection and prevention, and interruptible power supplies. Our facility is also committed to meeting the highest ISO certifications and standards with redundancy for all network and system components.
Our data center partner is a global leader in cloud infrastructure and business mobility with a dedicated set of resources so your data is never stored alongside data from another company. It is also a “lights-out” operation, which means it is climate controlled and locked with no onsite operators for a more secure environment.
“Using MongoDB’s encrypted data capabilities, LifeSite has created a brilliant solution to help people manage and access their information where only the end-user has the key to access their own data. It’s truly a giant idea that MongoDB is proud to be a part of.”
– Carlos Delatorre, CRO of database innovator MongoDB
The encryption keys required to store and display your information are stored securely and separately. Each account receives it’s own key that is unique to that individual and only allows for single access. Every account’s key is re-encrypted frequently with a rotating master key.
Tested, Audited, and Verified
Third-party audits are conducted daily to confirm our security measures and provide feedback for improvements as necessary. LifeSite Vault has obtained the highest scores possible for SSL verification, web vulnerability testing, and penetration testing from independent and certified, third-party auditing organizations including HackerOne and SkyHigh Networks.
“Bug bounty programs are an effective way for all security conscious companies to stay ahead of the curve by continuously surfacing unknown software vulnerabilities. We commend companies like LifeSite that take a proactive stance on disclosure and working with the hacker community, to level the cybersecurity playing field and help ensure their customers are protected.”
– Alex Rice, Co-founder and CTO, HackerOne
There is nothing more important to us than keeping your data secure. If you have any questions or concerns regarding security please contact us. For urgent security matters please call us at 650-209-6321.