Security and compliance

Hi,

I am presently considering using the zone service for ad hoc file sharing for business purposes.  Can anyone advise of the security measures Norton applies to the Zone service?

  • Is data encrypted prior to transmission and stored encrypted at rest?
  • Is data stored in Norton/Symantec data centers?
  • Have any SSAE16, SOC or ISO audits been completed or available for review.
  • Is there any defined SLA for the Zone service?
  • Are multi-factor authentication options available?

Thanks in advance for any intelligence.

Kind regards,

John Peterson

Hi John,

 

I have referred your questions to one of our moderators as I feel an answer from a Norton employee in lieu of a volunteer is needed.

Hi John, 

 

Welcome to the Norton Community!  :smileyhappy:

 

Please find the details below:

 

  • Is data encrypted prior to transmission and stored encrypted at rest? – Yes

 

  •  Is data stored in Norton/Symantec data centers? - Yes

 

  • Have any SSAE16, SOC or ISO audits been completed or available for review.  

      

  1. SSAE16 SOC1 — for All DCs
  2. PCI — for all DCs
  3.  ISO 27001 is in progress. 

 

  • Is there any defined SLA for the Zone service? - Yes, Please click here for terms.

 

  • Are multi-factor authentication options available? - No, This option is not available as of now. [ we'll post an announcement here if we release new features ]

 

I've also sent you a private message (List Private Messages). Please check it when you get a chance.