Woodlands’ Grove is hosted by Church Community Builder. Both Woodlands and CCB are committed to protecting the privacy of every user.
The following is taken from http://www.churchcommunitybuilder.com/privacy-policy/
Church Community Builder is committed to protecting the privacy of every user. We utilize no less than industry-standard security measures to safeguard any information collected.
Church Community Builder complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. Church Community Builder has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view Church Community Builder’s certification, please visit http://www.export.gov/safeharbor/.
Church Community Builder provides all Customers with secure and distinct subdomain names, as well as secure and distinct databases for storing member and organizational data. We adhere to strict industry standards for all site access and payment processing, including 256-bit Secure Sockets Layer (SSL) technology for secure Internet Protocol (IP) transactions, industry-leading encryption hardware and software methods and security protocols to protect Customer information, and compliance with the Payment Card Industry Data Security Standard (PCI DSS) .
Outside of the Customer’s secured Church Community Builder site (within email, printed documents, images, etc.), Customers are responsible to ensure reasonable precautions to protect personal information of their Contacts from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.
HOW SECURE IS CHURCH COMMUNITY BUILDER?
(copied from http://www.churchcommunitybuilder.com/faqs/)
Data security and privacy is important for any church management system, but it is a critical foundation for web-based solutions like Church Community Builder. Below, we go into all the nitty-gritty details of what makes our software secure. But let us sum it up non-geek for you first: your stuff is safe with us. Read the next section for the game-on geek-speak.
HOW SECURE – GEEK VERSION
The following section contains a lot of geek-speak. If you’re a regular humanoid this may not make much sense. (What exactly do double-salted hash browns have to do with my church’s data anyway?) If you’re really curious, maybe you can get your IT person to read the next few sections and explain it to you later.
DATA PRIVACY & INTEGRITY
The security of your data is taken very seriously. Our servers run Linux and have the latest stable versions and security updates installed. In addition to hardware firewalls, we use IPTables firewall software on our servers to keep them locked down as much as possible. Behind the scenes, our servers are only accessible by authorized staff securely via SSH or VPN, and all uploads/downloads of critical information are done via Secure FTP (SFTP). In addition, all passwords and login IDs to your solution are hashed and double salted to prevent unauthorized login attempts. On the user end, all church individual logins must be at least six characters long and contain at least one numeric and one alpha character to further ensure security of the data. Also, after five unsuccessful attempts at login, the user’s account is locked for a 60 minute period. Our primary and secondary datacenters are protected with dual keycard access and 24/7 video surveillance and security staff.
All customer data is snapshotted hourly, daily, weekly, monthly, and yearly to local network storage. Offsite backups are done nightly to a secure location in the unlikely event a catastrophic scenario prevents data access or recovery from the primary datacenter. Finally, we store daily backups to Amazon’s S3 service in the even more unlikely event that both the primary and secondary datacenters are unrecoverable.
We realize reliability is a critical component of your trust. We’ve configured our systems to ensure N+1 redundancy in our firewalls,loadbalancers, physical servers, and virtual services. In addition, both datacenters employ N+1 redundancy for power, cooling, and connectivity.
A 60KW UPS and an 80KW natural gas powered generator provide continuous power to the servers and communications equipment. All of the facility equipment is operating while the UPS and generator are standing by. In case of a power emergency, the UPS takes over. The generator then starts up to provide uninterrupted power flow until the utilities company fixes the outage.
Our datacenter is connected to the Internet via redundant OC-12 fiber lines. We feature fully burstable 100MB access to the Internet and to your location. The datacenters employ Cisco equipment for networking to ensure the best quality and reliability in the industry. In the unlikely event of a router failure, we have AB routes configured for an immediate failover to a standby router.