Keeping your customer & financial data safe. Security by OpenUnit.
We’ve designed our infrastructure with the utmost care. OpenUnit's stack builds security through progressive layers that deliver true defense for your self-storage facility. Keeping customer data safe and secure is a huge responsibility and will always remain a top priority for OpenUnit.
Our approach
OpenUnit is built with multiple layers of advanced security to protect your financial data and customers personal information. The OpenUnit engineering team has years of experience designing, building, and operating technical systems at scale for global companies, including Apple, Google, Kik, Nudge Rewards and Ticketmaster.
We plan to continue hardening our systems with security technologies as they emerge to deliver the most secure software for the self-storage industry.
Never expose your banking credentials.
Instead of asking for and storing your corporate account credentials, OpenUnit uses revocable tokens to access your data via secure APIs. We also secure our system-to-system communication using TLS, a cryptographic security protocol designed for privacy and data security.
Encryption at-rest, at-work, and in-transit.
Data is encrypted in transit and at rest. OpenUnit's web application is secured with HTTPS, which uses TLS and certificates to ensure that your data is encrypted when transmitted between our services. OpenUnit uses application-level and storage-level encryption to automatically encrypt sensitive data at rest to prevent unauthorized access.
Our storage system uses AES-256/ SHA-256 encryption. Files are encrypted with AES-256, sliced, replicated, and geographically dispersed to separate data centers on private, end-to-end encrypted network connections.
Fortified, multi-layered encryption unique to your organization.
OpenUnit encrypts multiple layers of keys and secrets using AES-256, HMAC and other industry standards that safeguard millions of applications around the world. Our system regularly rotates our Key Encryption Keys and Data Encryption Keys to keep your data safe.
Full redundancy for all major systems.
Our servers — from power supplies to the internet connection to the air purifying systems — operate at full redundancy. Our systems are engineered to stay up even if multiple servers fail.
Securing Personally Identifiable Information (PII).
Encrypting is crucial for data security. The National Institute of Standards and Technology defines personally identifiable information (PII) as:
- Any information that can be used to distinguish or trace an individual’s identity
- Any other information that is linked or linkable to an individual
Here are some examples of data that can identify a person:
- Full Name
- Email address
- Street address
- Phone number
- Credit card number
- Social Security number, passport number, or driver’s license number
- IP address
And here are some examples that aren’t necessarily sensitive on their own, but can be when linked to a person:
- Full Name
- Email address
The line between these isn’t always clear, so we start with the highest compliance out-of-the-box. OpenUnit uses AES-GCM for authenticated encryption for sensitive data at the application-level.
Data protection and privacy.
Our primary data centers are stored in the United States using Amazon AWS. All data is written to multiple disks instantly, backed up daily, and stored in multiple locations. Files that our customers upload are stored on servers that use modern techniques to remove bottlenecks and prevent unauthorized access. Our software infrastructure is updated regularly with the latest security patches.
Law enforcement
OpenUnit will never hand your data over to law enforcement unless a court order says we have to. We flat-out reject requests from local and federal law enforcement when they seek data without a court order. And unless we’re legally prevented from it, we’ll always inform you when we receive such requests regarding your account.
Data deletion
All your content will be inaccessible immediately upon cancellation. Within 30 days, all OpenUnit content will be permanently deleted from all servers and logs. This information can not be recovered once it has been permanently deleted. OpenUnit will never sell your facility data, financial data, or customer's information.
FAQ
- How can I keep my self-storage software secure?
-
Your storage system should use AES-256/ SHA-256 encryption and keep data encrypted in transit and at rest. OpenUnit uses application-level and storage-level encryption to automatically encrypt sensitive data at rest to prevent unauthorized access.
- How can I prevent payment fraud from renters at my self-storage facility?
-
Your greatest area of concern is internal fraud, which happens when an employee with access to the payment system abuses the privilege to steal money. Make sure your software system allows you to set user permissions and prevent front-line staff from accessing certain areas of your software.
- Does my self-storage website really need HTTPS?
-
The short answer: Yes. Look for a platform that hosts and protects your site using Level 1 PCI DSS compliance. Ideally, this service should come out of the box.
- What can I do to ensure my self-storage website is secure?
-
The line between these isn’t always clear, so you should start with the highest compliance. OpenUnit uses SSL certificates and AES-GCM for authenticated encryption to access sensitive data.
- Will you sell my facility data or customer lists to third-party marketing companies?
-
OpenUnit will never sell your facility data, financial data, or customer's information.
- How secure is my data in OpenUnit?
-
OpenUnit is built with multiple layers of advanced security to protect your financial data and customers personal information. The OpenUnit team has years of experience building for global companies, including Apple, Google, Kik, and Ticketmaster.