Data Encryption Disclosure

How OWNIT Protects Your Business, Financial, Accounting & Medical Data

HIPAA Compliant GDPR Compliant SOC 2 Ready AES-256 Encryption
EXECUTIVE SUMMARY

Your Data is Protected with AES-256 Encryption

OWNIT implements AES-256 encryption for all data at rest. This is the same encryption standard used by financial institutions, government agencies, healthcare organizations, and Fortune 500 companies worldwide. Your data is automatically encrypted without any action required from you or your staff.

Data at Rest Encryption: All data stored in our databases - whether medical records, financial transactions, accounting entries, or general business data - is encrypted using AES-256, the industry gold standard for data protection.
DATA TYPES PROTECTED

All Your Critical Business Data is Encrypted

Medical Data

Patient records, diagnoses, prescriptions, PHI

Financial Data

Transactions, payments, billing, invoices

Accounting Data

Ledgers, journals, general accounts, tax records

Business & Personal Data

Customer info, employee records, inventory, CRM

Banking Data

Account numbers, reconciliations, transactions
ENCRYPTION TECHNOLOGY

Technical Specifications

ComponentSpecification
Encryption AlgorithmAES-256 (Advanced Encryption Standard 256-bit)
Encryption ModeIndustry-standard encryption techniques with secure, authenticated modes
Key ManagementHardware or Software-based Key Management System (KMS) in accordance with industry standards
Data in TransitTLS 1.3 (Transport Layer Security)
Data at RestFull database and storage-level encryption for all persisted data
Key Strength256-bit encryption keys compliant with modern security standards
COMPLIANCE & REGULATIONS

Meets Industry Standards

HIPAA

§ 164.312(a)(1) - Data at rest encryption for PHI

GDPR

Article 32 - State of the art encryption

SOX / PCI

Financial data protection standards

PIPEDA (Canada)

Personal Information Protection standards

HDS (France)

Healthcare data hosting certification

DEPLOYMENT OPTIONS

Encryption Works For Both Cloud & On-Premise

Cloud Deployment

Data Storage: Reputed Tier III Data Center, Gravelines, France (EU Region)

Encryption: Automatic AES-256 at rest

Data Routing: Via Cloudflare (TLS 1.3, DDoS protection)

Certifications: HDS, ISO 27001, SOC 2 Type II

OWN IT Role: Data Processor

On-Premise Deployment

Data Storage: Your own servers/infrastructure

Encryption: AES-256 at rest

Your Control: Full ownership of encryption keys

Your Role: Sole Data Controller

Support: We help you configure encryption

ADDITIONAL SECURITY FEATURES

Defense in Depth

  • Encrypted Redo Log: Prevents plaintext exposure in transaction logs
  • Encrypted Temporary Files: No data leaks from temp tables
  • Encrypted Binary Logs: Replication and backup logs protected
  • Role-Based Access Control (RBAC): Granular user permissions
  • Audit Logging: Complete trail of all data access
  • Automatic Key Rotation: Regular key updates for enhanced security
FREQUENTLY ASKED QUESTIONS

Common Questions About Our Encryption

Is my data encrypted automatically?

Yes. Our software encrypts all data automatically. No manual steps required from you or your staff.

Does encryption affect performance?

Minimally. AES-256 encryption adds approximately 3-5% overhead to database operations - imperceptible to users.

What if someone steals my laptop/database files?

The data is unreadable. All database files are encrypted with AES-256. Without the encryption key, the data is useless.

Do I need to enable anything for encryption to work?

No. Our software is pre-configured with encryption enabled by default for all deployments.

Is this compliant with medical data regulations?

Yes. AES-256 meets and exceeds HIPAA, GDPR, HDS, and other medical data protection requirements.

Is this compliant with financial regulations?

Yes. AES-256 is the standard for financial data protection (SOX, PCI, Gramm-Leach-Bliley).

OWNIT Encryption Certification

OWNIT certifies that all data stored in our systems - including medical records, financial transactions, accounting entries, and business data - is protected using AES-256 encryption at rest and TLS 1.3 encryption in transit. Our encryption implementation meets or exceeds the requirements of HIPAA, GDPR, PIPEDA, SOX, and other applicable data protection regulations.

For questions about our encryption practices, contact: [email protected]

A printable PDF version of this disclosure is available upon request.

Encryption Standard: AES-256 | Compliance: HIPAA, GDPR, HDS, SOC 2