CheckCentral is a monitoring software used by enterprise-level clients and MSPs who must ensure their data and communications are well-protected.

Binary Fortress Software, the makers of CheckCentral, continue to implement security measures that support our clients' interests as well as our own. From the management website and mobile app to the storage of client data, full considerations have been made to create a solid and secure software experience.

CheckCentral service goals are 99.9% uptime annually and ticket responses of 1 business day. Our service status is available here: https://status.checkcentral.cc.

The dashboard and management site for CheckCentral clients is HTTPS-secured, with available two-factor authentication (2FA) for added security on login. Single Sign-On (SSO) with Azure AD and Google Workspace is also available. Passwords are salted with unique, random character strings, then hashed for secure storage. The mobile app is given the same security treatments.

CheckCentral software parses notification emails to match client-defined matching criteria for establishing check status conditions. As such, clients' select emails are sent to Binary Fortress email servers for parsing. SSL and TLS are used between client and server to protect and encrypt email details. This keeps sensitive information private and inaccessible to anyone outside this conduit of trusted communication.

Once the clients' emails are received, the data within is stored on Binary Fortress servers for parsing and matching. Data moved between these servers is HTTPS-encrypted, and email contents are encrypted at rest. Only check names and high-level matching criteria are not encrypted at rest, but contain no detailed information about the clients' servers, employees, or sensitive data.

Personally Identifiable Information (PII) collected and stored by Binary Fortress is for CheckCentral user creation (i.e. names, email addresses, and phone numbers). This data is encrypted when in transmission.

Binary Fortress Software uses Stripe for storing client payment information and processing purchases. Stripe is a Level 1 PCI Service Provider. It uses HTTPS and HSTS for secure connections and encrypts all card numbers at rest with a separated infrastructure to prevent overlapping data access.

The facility housing client data is a tier 3 colocation data centre owned and operated by a large data centre provider located in Ottawa, Canada. There is redundant power, redundant Internet connections, and strict physical access controls including biometric scanners. The data centre facility has SOC2, SSAE 16, and ISAE 3402 certifications.

Binary Fortress runs quarterly audits and tests for the following: security of in-house servers and employee machines (including data access and retention), internal code audits, and full disaster recovery.

Third-party services are always kept up-to-date, OS updates are performed monthly or on-demand as needed, and a bug bounty program is available for reporting security issues.

Notifications to third-party channel software such as external emails or Slack do not include sensitive information and only reference the state of checks. Integrations with external ticketing systems, giving access to more detail, use API keys and tokens to establish trusted communication between systems. Azure is used for incoming SMTP mail relays. Google and Amazon cloud services are used for OCR attachment processing.