Our clients’ records and data, including individual, non-public, personal information of our clients’ members are treated as confidential. If AXIS receives any Confidential Information from or on behalf of our clients, AXIS maintains the security and confidentiality of that confidential information as required by applicable laws and regulations, including, the federal Gramm Leach Bliley Act and the regulations associated with such.
Any non-public personal information you choose to share with us will not be disclosed to anyone outside of AXIS, Inc., or our business partners except as agreed upon by you in writing or unless we are required to do so by law.
We limit access to non-public personal information to only those employees who need it to perform their job duties while providing products and services to you, or to maintain or service those products or services. Under no circumstances will AXIS, Inc. sell or give information to a third party without your consent.
AXIS, Inc. performs FDLE and NMDLE background checks on all employees and requires all employees to sign a confidentiality agreement that is kept in their personnel file.
Secure Building Access
At our Orlando location, AXIS, Inc. utilizes a secure building key card access system. Access cards issued to employees are programmed to only allow access to areas deemed necessary for the employee to perform their job. At our Albuquerque location, AXIS, Inc. utilizes a building security system monitored by PSI; including a camera monitoring system.
AXIS utilizes Secure File Transfer via FTP (FTPS), a method of transmitting data from one computer to another in an encrypted format to greatly reduce the chance of unintended use of the information being transferred. Each client has their own unique, secured FTP folder for data reception. Our FTP Server accepts connections secured with 128 bit SSL technology. In order to use our FTPS service, the customer must use FTP client software that is capable of establishing a 128 bit SSL connection with our server. AXIS also supports encrypted PGP and Zip files for added security of data.
User IDs and passwords are required for connecting to the AXIS, Inc.’s internal network. Access to network data is controlled through Windows Active Directory group or individual permissions as appropriate to the data. Virus protection for the network is provided by Symantec Anti-virus Enterprise Edition. SAVEE is centrally managed with automatic downloading and installation of signature files. This protection is provided by utilizing a Cisco ASA 5510 firewall appliance for perimeter security. The firewall allows only necessary incoming traffic to the demilitarized zone (DMZ). The FTP server resides in the DMZ providing protection from the outside and separation from the company's private network. All Windows servers are reviewed monthly for vulnerabilities using the MS Baseline Security Analyzer and patched as needed.
Security of Negotiables
AXIS does maintain security storage for those materials that require locked security such as security check stock, tickets or monetary vouchers. At our Orlando location, this storage area is located in an air conditioned space requiring authorized badge access and/or key access. Access to this area is limited to authorized personnel only. At our Albuquerque location, this storage area is located in a back room fire rated safe requiring authorized access. Access to this safe is limited to authorized personnel only. A documented procedure for pulling sensitive material from locked security storage is strictly adhered to.
In addition, AXIS maintains locked shredding bins for temporary housing of confidential material prior to actual shredding of documents. Access to keys to the locks are limited to Supervisors and HR and all shredding is performed onsite at AXIS by American Document Destruction.