- Privacy Questions
- Who owns the data I put into your system?
- Are OwnerRez employees free to aimlessly peruse my pictures or property information?
- Does OwnerRez give third parties access to my data?
- What kind of scanning/indexing of user data is done?
- How long does OwnerRez keep my data?
- Can I access other users' data if I personally know the individual?
- How does OwnerRez handle law enforcement requests?
- I am outside the United States and need to comply with the European Commission Directive on Data Protection. Am I safe using OwnerRez's services?
- Security Questions
- Where is my data stored?
- Is my data safe from your other customers when it is running on the same servers?
- How do you secure your data centers?
- How do you protect your infrastructure against hackers and other threats?
- How do you prevent and resolve security flaws in your applications?
- How do you protect against machine failures or natural disaster?
- Is it safe to access my data over the internet?
- How do you protect me against spam, viruses and phishing attacks?
- Can I use my own internal authentication mechanisms to provide users access to OwnerRez?
Absolutely not. OwnerRez employees are not even allowed to view your information unless they have a specific purpose and are granted specific access by an administrator.
User content is scanned and indexed occasionally. We scan the contents in order to provide a variety of services, such as searching and reporting. Information from scanning is not shared with third parties. This process is completely automated, involves no human interaction, and it is not shared with any other users.
We believe that you should have control over your data. OwnerRez keeps multiple backup copies of users content so that we can recover data and restore accounts in case of errors or system failure. When you ask us to delete messages and content, we will make reasonable efforts to remove deleted information from our systems as quickly as is practicable.
Absolutely not. We understand that from time to time, individuals will want to share their pictures or videos with other family members, but OwnerRez is not set up to support such requests. We take security very seriously and you should as well. Never give out your login or password to anyone else no matter how well you know them. If you want to share pictures or videos with others, please use other internet services that specialize in that activity.
OwnerRez complies with valid legal processes seeking account information, such as search warrants, court orders, or subpoenas. We attempt to notify users before turning over their data whenever possible and legally permissible. We do not ever, for any reason, divulge account information with any government authorities without a valid warrant or court order demanding that we do so.
I am outside the United States and need to comply with the European Commission Directive on Data Protection. Am I safe using OwnerRez's services?
No, OwnerRez is not a member of the EU Safe Harbor program. The safe harbor -- approved by the EU in 2000 -- is an important way for U.S. companies to avoid experiencing interruptions in their business dealings with the EU or facing prosecution by European authorities under European privacy laws. OwnerRez is still researching the steps necessary to comply with and become certified for the EU Safe Harbor program.
Your data will be stored using OwnerRez's hosting providers. There is no guarantee which hosting provider will house the data. OwnerRez does this to ensure that we can best handle security, scalability, usage spikes, and redundancy.
Yes. Data is virtually protected as if it were on its own server. Other users cannot access your data, and vice versa. In fact, all user accounts are protected via this virtual lock and key that ensures that one user cannot see another user's data. This is similar to how customer data is segmented in other shared infrastructures such as online banking applications.
Locations of OwnerRez's hosting providers, data providers and data centers are kept private and the buildings themselves are kept discrete for security. Access to data centers is very limited to only select OwnerRez employees and is controlled by strict measures at each facility.
The OwnerRez technology team is comprised of many software experts who have many years of experience with web-based services. The OwnerRez security team has gone to great lengths to protect against threats. Each of the OwnerRez software systems has been optimized for security and performance. The OwnerRez security team is working with external parties to constantly test and enhance security infrastructure to ensure it is impervious to external attackers.
OwnerRez products and services are required to go through security review as part of the launch process. If a security flaw is found in an application or infrastructure component, the security team is called on to resolve the issue. Because we are hosting the applications in our data centers, we can quickly deploy these fixes to all our systems without requiring any action on your part.
The application and network architecture run by OwnerRez is designed for maximum reliability and uptime. OwnerRez's hosting platform assumes ongoing hardware failure, and robust software fail-over withstands this disruption. All OwnerRez systems are inherently redundant by design, and each subsystem is not dependent on any particular physical or logical server for ongoing operation. Data is replicated multiple times across OwnerRez's clustered active servers, so, in the case of a machine failure, data will still be accessible through another system. We also replicate data to secondary data centers to ensure safety from data center failures.
All OwnerRez services provide the ability to access all data using encryption and customers can choose to require this option when they access the site.
OwnerRez never shares, gives or sells any user's email addresses to any third parties at any time for any reason. Because of this, you can rest assured that supplying OwnerRez with your email address will not result in you receiving unsolicited email. OwnerRez does send email messages to users to update them with account updates. These messages are part of ongoing security measures and may not be opted-out of. All non-system messages (newsletters, special offers, etc) are only sent to users who have opted-in.
No. For the time being, OwnerRez has decided not to integrate with or provide SSO (Single Sign-On). We are contemplating whether to add this in the future.