how to get started

Security


Why you’re safe and secure with MobiBizLive.com

We provide bank-level security.

MobiBizLive.com uses 128-bit SSL encryption and 24/7 physical security.


MobiBiz provides bank-level data security for the transaction information we store.
  • MobiBizLive.com always transmits personal and financial information securely.
  • We store transaction information in our cloud infrastructure provided by Amazon Web Services (AWS) hosted in state-of-the-art data centers proving maximum security and availability. Find out more about our security technology.
  • All our employees pass financial and criminal background checks as a condition of employment.
  • We subscribe to an anti-phishing service to discover and takedown malicious sites intended to fool our customers.

Security FAQ:

Do you store my credit card and other personal information on your servers?

Your credit card and billing details are stored securely in a separate database using multi-layered hardware and software encryption.

Can MobiBiz employees view my credit card numbers?

Your bank account and credit card numbers are stored securely. Your information may be seen by technical personnel in accordance with specified procedures and safeguards governing access in order to operate, develop and improve the Service.

How can I protect my MobiBiz account?
  • Don’t share your MobiBiz password with anyone.
  • Make sure that your password is complex, including both numbers and capital letters.
  • Be certain that you have virus protection and a firewall on any computer you use to access MobiBiz.
  • Don’t install programs from people or companies you don’t know.

If someone does manage to steal my MobiBiz log in information, can they access my credit cards to make any transactions?

No, your credit card information and passwords are never displayed after you enter them during your first session.

How can I close my MobiBiz account?
  1. Email us at info@mobibizlive.com with your account username.
  2. Your MobiBiz account data will be removed within 48 hours. Your data may also remain on a backup server or media. MobiBiz keeps these backups to ensure our continued ability to provide the Service to you in the event of malfunction or damage to our primary production servers.

Security Technology:

MobiBiz uses Amazon Web Services (AWS) for its application cloud infrastructure.


MobiBiz has taken the following approach to secure our AWS hosted infrastructure:

  • Certifications and Accreditations. AWS has successfully completed a SAS70 Type II Audit, and will continue to obtain the appropriate security certifications and accreditations to demonstrate the security of our infrastructure and services.
  • Physical Security. Amazon has many years of experience in designing, constructing, and operating large-scale data centers. MobiBiz AWS infrastructure is housed in Amazon-controlled data centers throughout the world. Data centers themselves are secured with a variety of physical barriers to prevent unauthorized access. MobiBiz server instances reside in 3 different physical regions:
    • Europe
    • Americas
    • Asia
  • Data Privacy. MobiBiz AWS enables users to encrypt their personal or business data within the MobiBiz cloud and publishes backup and redundancy procedures for services. For more information on the data privacy and backup procedures, consult the Amazon Web Services: Overview of Security Processes whitepaper.

Data in transit

Between a browser and a web server, SSL is configured on all our server instances.

Backups

All data stored on our cloud servers is redundantly stored in multiple physical locations as part of normal operation. Snapshots of Storage volumes are periodically taken without quiescing the file system.

Network Security

The AWS network provides significant protection against traditional network security issues and we implement further protection:
  • Distributed Denial Of Service (DDoS) Attacks: MobiBiz cloud servers are hosted on large, Internet-­?scale, world-­?class infrastructure that benefits from the same engineering expertise that has built Amazon into the world’s largest online retailer. Proprietary DDoS mitigation techniques are used. Additionally, AWS’s networks are multi-­?homed across a number of providers to achieve Internet access diversity.
  • Man In the Middle (MITM) Attacks: All of the MobiBiz APIs are available via SSL-­?protected endpoints which provide server authentication.
  • IP Spoofing: MobiBiz AWS instances cannot send spoofed network traffic. The AWS -­?controlled, host-­?based firewall infrastructure will not permit an instance to send traffic with a source IP or MAC address other than its own.
  • Port Scanning: When unauthorized port scanning is detected it is stopped and blocked. Port scans of MobiBiz AWS instances are generally ineffective because, by default, all inbound ports on Amazon instances are closed, and only selected ports are opened.

MobiBiz Instance (powered by Amazon EC2)

Security Security within Amazon EC2 is provided on multiple levels: the operating system (OS) of the host system, the virtual instance operating system or guest OS, a firewall, and signed API calls. Each of these items builds on the capabilities of the others. The goal is to ensure that data contained within a MobiBiz instance cannot be intercepted by unauthorized systems or users and that MobiBiz instances themselves are as secure as possible without sacrificing the flexibility in configuration that customers demand.

Data Management

MobiBiz employs multiple layers of physical security measures to protect customer data at rest. For example, physical access to actual Customer data on production MobiBiz instances is restricted for all MobiBiz personnel. MobiBiz maintains a parallel UAT (User Acceptance Test) environment for all testing and debugging purposes.