BitTitan - Data Security and Privacy Policy

At BitTitan, we take mailbox data security and privacy very seriously. Our product has been used to migrate Fortune 100 companies, American and foreign governments, police departments, banks, stock exchanges, telecoms, hospitals, and healthcare organizations, all with stringent security requirements. Read the BitTitan Security Overview White Paper attached below for a more detailed view of our policies.

We deploy many manual and automated checks and balances throughout to ensure compliance with our own policies.

The following information applies to all migration types and environments available through BitTitan, including Mailbox, Document, Public Folder, Personal Archive, and Collaboration migrations. 

Trusted Brand

Trusted Brand: We perform migrations in over 50 countries.  The most security-conscious organizations have used our product, which spans health care, governments, and some of the largest publicly traded companies in the world.

Fully Automated

Our migration solution is fully automated. This is more secure than traditional solutions, as there is no human interaction with the servers, software, or migration process. MigrationWiz minimizes the handling of credentials and data with the help of IT staff.

Zero Deployment

MigrationWiz operates outside of the firewall and connects to messaging systems the same way any external user would. It is not mandatory to install third-party software inside your firewall/network.

Data

Data (including subjects, bodies, attachments, documents, conversations, etc.) is not stored on our servers. In some cases, the data may be cached temporarily to optimize network throughput. Rest assured that your data, if cached, is wiped immediately once the migration finishes.

Credentials

Credentials are stored using military-grade AES encryption. The credentials are immediately purged from the system once you delete the corresponding configuration to which it is associated.

Auto-Purge Policy

We have implemented an automatic purge policy that will delete any configuration that is not used. If no migration has been performed within 180 days (from either your last migration or the creation of configuration, whichever is later), we will delete the data from our servers. You can configure this to be a longer or shorter period.

PCI Compliance

Our data center is PCI-compliant, and some of our locations worldwide are SAS 70 Type II-compliant.

Region of the Destination Tenant

MigrationWiz optimizes the migration performance and speed by identifying the region closest to the destination tenant. For Microsoft 365 mailbox and archive destination endpoints, this selection is made automatically. For other migration types, you must manually choose the region nearest to your tenant location, from which the migration will be processed.

Please be aware that the location values in the SDK tool differ from the ones shown in MigrationWiz, which shows the new preferred region of the tenant values. This does not impact migrations or security in any way.

MigrationWiz offers the locations in the following areas:

  • United States
  • Netherlands
  • Singapore
  • Australia
  • Japan
  • Brazil
  • Canada
  • Ireland
  • France
  • South Africa

Tip

For more information about the region of your destination tenant review the Choosing the Region of the Destination Tenant article, where you can find the recommended ways to verify it.

Specify the Closest Region to your Destination Tenant

You can specify a region of the tenant when creating your project only for non-Microsoft 365 destination endpoints.

  1. Sign in to your MigrationWiz account.​
  2. Create your project.
  3. Set up your source and destination endpoint.
  4. When creating your destination endpoint, select a region from the Preferred region of the destination tenant dropdown menu.

Important

Please consider that the Preferred Region of the Tenant field is mandatory. If you do not choose a region, MigrationWiz will not allow you to continue with the project creation. 

EU Model Clauses

We have a company-wide compliance program to meet this rigorous standard, and BitTitan can offer the EU Model Clauses to our European customers.

Deleting a BitTitan Account

To have your information removed from our platform permanently, please submit a request to gdpr@bittitan.com and we will be happy to process your request as soon as possible.

DNS Records

BitTitan does not cache DNS records.  The best way to know how long your record is being cached is to view your server’s DNS Time To Live (TTL) setting.

Security White Paper
Whitepaper_MigrationWiz_Security.pdf

Was this article helpful?
0 out of 1 found this helpful