Ultius takes security and privacy very seriously in order to protect their clients. As one of the leading writing services providers online, they know client trust is essential for their business. Here are some of the key things Ultius does to maintain a safe and secure platform:
Encryption – All communication on the Ultius website uses TLS 1.2 encryption, one of the most advanced and up-to-date encryption standards. This ensures any sensitive data shared is encrypted during transmission and safe from interception. Ultius also encrypts any files containing work that are shared between clients and writers.
Authentication – Ultius requires two-factor authentication for staff access to systems containing client data. This provides an extra layer of security beyond passwords to verify identity. Clients setting up accounts also have to verify their email and go through an identity check process. Writers are thoroughly screened during hiring.
Infrastructure – Ultius uses best-in-class hosting providers like Google Cloud to house their infrastructure. Google Cloud prioritizes security and is regularly assessed by third-party auditors. Servers have advanced DDoS protection, automated patching, and are closely monitored. Ultius also uses a content delivery network from Cloudflare that scans traffic for anomalies.
Access Controls – Ultius implements role-based access so staff only have permission for the systems needed to do their job, limiting potential damage from any compromises. Strong password policies and automatic account locks prevent brute force access attempts. Multi-factor authentication is required for privileged access. Activity is also logged and monitored centrally.
Audits & Compliance – Ultius undergoes regular external audits to validate they are meeting security and privacy requirements. This includes assessments of technical and physical controls as well as process reviews. They are also compliant with regulations like GDPR which have strict rules around protecting personal information. Auditors have not found any major issues to date.
Backups & Disaster Recovery – Ultius uses a combination of on-premise and cloud-based systems to back up critical customer data, software configurations, and systems images daily. Their disaster recovery plan is routinely tested to ensure operations can be restored quickly in an emergency. Data is also encrypted during backups and both backup locations are geographically separated.
Vulnerability Management – Ultius runs vulnerability scanning tools regularly against their internet visible systems and networks to detect any weaknesses. Any critical issues are immediately fixed and all vulnerabilities addressed quickly through patching. Penetration tests are also performed annually by external security firms to mimic real attacks.
Education & Awareness – All Ultius staff complete regular information security training tailored to their role. From avoiding phishing to securely developing software, they learn how to protect systems and data. Unscheduled awareness campaigns additionally train staff how to identify and report potential incidents.
Incident Response – Should an issue occur, Ultius has a defined incident response plan for rapidly containing damage, eradicating threats, recovery and ongoing monitoring. Members from different teams collectively respond with status calls that continue until the situation is fully addressed and clients impacted are notified. Lessons learned are also incorporated into security improvements.
Privacy – Ultius does not share any client personal information with outside parties unless compelled to by law. Client requests and orders are also never search-engine indexed to maintain privacy. Strict policies are in place governing how data is collected, stored, used and retained. Ultius is also GDPR compliant to protect EU users.
Monitoring – Server logs, authentication records, and other systems are centrally monitored with alerts triggered on anomalies. Activity is tracked for all users including failed login attempts to detect suspicious behavior. Devices also have monitoring agents that watch for malware infections or unusual processes indicating a compromise may have occurred.
With these robust security measures in place, Ultius aims to assure clients they can trust using their service without worrying about unauthorized access to accounts or order details. Of course no online system can be 100% safe, but continuing to invest in people and technologies helps Ultius maintain industry-leading protections for users. Their commitment to security and privacy earned high ratings from sources like the Better Business Bureau.
Ultius implements strong security controls at each level from infrastructure and access to monitoring and incident response. Regular third party assessments additionally validate their capabilities. While no online systems can be perfectly safe, Ultius’ comprehensive security program and compliance with standards like GDPR provide good reason for clients to believe their data is in safe hands. Transparency about security practices also allows users to make informed choices about disclosure of personal information to the service.
