Our physical infrastructure is housed in secure data centers throughout the United States. Our SOC 2 Type 1/2 facilities require four-factor biometric authentication to physically access equipment. Additionally, we have best-in-class computer & network security policies to protect your personal and business data from online attackers.
Our network and server infrastructure is fully redundant, from our incoming network feeds all the way down to data on disk.
All data from primary data centers is backed up to a physically owned disaster recovery facility meeting the 100 mile+ secondary redundancy standard. Our disaster recovery facility is fully capable of taking over for our primary production facilities should the need arise.
Our data center meets the highest standards for quality and security, ensuring your files are in good hands. Our facilities are SOC 2 Type 1/2 Compliant as well as ISO 27001 Certified.
ExaVault is Privacy Shield certified, and we can lawfully collect, receive, and process personal data from the EU and UK. For more information, please see our page on the EU's General Data Protection Regulation.
Our network is proudly all Juniper, from our core switches on down. We use 10gig connections at the edge, and 40gig on the backbone, to help keep data moving quickly through our infrastructure.
We’re believers in the security and flexibility provided by open source software. We use FreeBSD and CentOS at the OS layer, and a customized version of proftpd for our S/FTP server subsystem. We're contributors to all three projects as well — we like to give back.
We use proven secure FTP data storage technology, including ZFS and GlusterFS, to keep your files safe and secure on our FTP servers. Our newest generation hosted FTP storage pools are capable of instant failover should an issue occur.
Architecturally, all of our customer-facing file transfer and FTP services run through a single, powerful API. Some other companies have segmented APIs that they give their customers, compared to what they use in-house for their own platforms. Not us – we provide full access to the same API we use for all clients. For more info, see our developer docs.