Mozy’s world-class data centers are state of the art. In addition, the Mozy product and service successfully completed an SSAE 16 Type 2 audit, which resulted in a SOC 2 Type 2 report, as well as completed a recertification of ISO/IEC 27001 version 2013. “Tritanium” (a fictitious compound with non-fiction strength) means that they’re protected by gated perimeter access, 24x7x365 onsite staffed security and technicians, electronic card key access, fire detection and suppression systems, redundant power distribution units, and strategically placed security cameras inside and outside the building. No one—and we mean no one—is getting anywhere near your data unless they are authorized. And even then, the data is encrypted at rest using 448-bit Blowfish, or, if you prefer, 256-bit AES enterprise-grade ciphers or your own personal or corporate encryption key, which is known only by you. Not even Mozy knows.
As a handler of confidential customer data, Mozy is in the business to protect data. Mozy has successfully completed the SSAE 16 Type 2 audit and is ISO/IEC 27001:2013 certified. These independent verifications certify that Mozy’s processes and procedures meet or exceed the strictest control objectives in the industry.
By voluntarily submitting to an SSAE 16 audit and obtaining ISO 27001 certification, we demonstrate our commitment to protecting your information and our preparation to face the growing threats to digital information.
Mozy's successful completion of their annual SSAE 16 Type 2, HIPAA-HITECH and ISO/IEC 27001 audit was performed by Schellman & Company, LLC, an ANAB accredited certification body based in the United States. For a copy of Mozy’s SSAE 16 audit or ISO 27001 certification, contact us.
Mozy views compliance as critical to the protection of your data. Our customers often want to know if they can remain compliant with a wide variety of international, U.S., and European Standards, including PCI DSS, SOX, HIPAA, GLBA, 95/46/EC Data Protection Directive, 2002/58/EC Privacy and Electronic
Communications Directive, and Safe Harbor Privacy Principles while using our backup solutions. The principles behind each of these standards are for the data owner to retain control of sensitive data and ensure that only authorized parties can view that data.
As a handler of confidential customer data, Mozy is in the business to protect data. That’s a lot of pressure, but we can handle it. It’s what we do better than anyone else. And by voluntarily submitting to a SSAE 16 audit and obtaining ISO 27001 certification, Mozy shows its commitment to its customers’ information and its preparation to face the growing threats to digital information. So, breathe easy, your information is safe with us.
When you back up data to Mozy, you remain in control of the data through the authentication schemes and encryption the system uses. Each file stored within the Mozy infrastructure is encrypted prior to transmission to our infrastructure, meaning that private and sensitive information remains private while we store it for you.
We do not compromise the internal security controls our customers maintain to meet compliance with various regulations. Mozy also takes proactive steps to protect against attacks, hazards, or unauthorized access that could threaten the security, privacy, and integrity of your data.