BitTitan - Data Security and Privacy Policy

At BitTitan, we take mailbox data security and privacy very seriously. Our product has been used to migrate Fortune 100 companies, American and foreign governments, police departments, banks, stock exchanges, telecoms, hospitals, and healthcare organizations, all with stringent security requirements. Read the BitTitan Security Overview White Paper attached below for a more detailed view of our policies.

We deploy many manual and automated checks and balances throughout to ensure compliance with our own policies.

The following information applies to all migration types and environments available through BitTitan, including Mailbox, Document, Public Folder, Personal Archive, and Collaboration migrations. 

Trusted Brand

Trusted Brand: We perform migrations in over 50 countries.  The most security-conscious organizations have used our product, which spans health care, governments, and some of the largest publicly traded companies in the world.

Fully Automated

Our migration solution is fully automated. This is more secure than traditional solutions, as there is no human interaction with the servers, software, or migration process. MigrationWiz minimizes the handling of credentials and data with the help of IT staff.

Zero Deployment

MigrationWiz operates outside of the firewall and connects to messaging systems the same way any external user would. It is not mandatory to install third-party software inside your firewall/network.

Data

Data (including subjects, bodies, attachments, documents, conversations, etc.) is not stored on our servers. In some cases, the data may be cached temporarily to optimize network throughput. Rest assured that your data, if cached, is wiped immediately once the migration finishes.

Credentials

Credentials are stored using military-grade AES encryption. The credentials are immediately purged from the system once you delete the corresponding configuration to which it is associated.

Auto-Purge Policy

We have implemented an automatic purge policy that will delete any configuration that is not used. If no migration has been performed within 180 days (from either your last migration or the creation of configuration, whichever is later), we will delete the data from our servers. You can configure this to be a longer or shorter period.

PCI Compliance

Our data center is PCI-compliant, and some of our locations worldwide are SAS 70 Type II-compliant.

Region of the Destination Tenant

You can select the tenant location from which migrations will be processed. Please be aware that the location values in the SDK tool differ from the ones shown in MigrationWiz, which shows the new preferred region of the tenant values. This does not impact migrations or security in any way.

We offer data center locations in the following areas:

  • United States
  • Netherlands
  • Singapore
  • Australia
  • Japan
  • Brazil
  • Canada
  • Ireland
  • France
  • South Africa

Tip

You can find the region of your destination tenant directly in the Microsoft Entra admin center by going to Identity > Overview > Properties, and using the Country or region or the Data location.

Country or region.png

For more information on this topic, review this article.

Specify a Region

You can specify a region of the tenant in the Advanced Options by following the next steps once you create your project.

  1. Sign in to your MigrationWiz account.​
  2. Edit your Project and click on Advanced Options.
  3. Select a region using the Preferred region of the destination tenant field under the Performance tab.

Microsoft 365 Destination Endpoints

However, when setting up Microsoft 365 destination endpoints, you can specify the Preferred region of the destination tenant value by selecting it from the Preferred Region of the Tenant dropdown menu. 

Please consider the following information when setting up or editing a project with these destination endpoints:

  • The Preferred Region of the Tenant field is mandatory and if you do not choose a region, MigrationWiz will not allow you to continue with the project creation. 
  • The Preferred Region of the Destination Tenant value in the advanced options must match the value of the Preferred Region of the Tenant in the destination endpoint configuration. Please verify this.
  • The Tenant's Preferred Region updates the Preferred Region of the Destination Tenant field in the project's Advanced Options, and vice versa.

EU Model Clauses

We have a company-wide compliance program to meet this rigorous standard, and BitTitan can offer the EU Model Clauses to our European customers.

Deleting a BitTitan Account

To have your information removed from our platform permanently, please submit a request to gdpr@bittitan.com and we will be happy to process your request as soon as possible.

DNS Records

BitTitan does not cache DNS records.  The best way to know how long your record is being cached is to view your server’s DNS Time To Live (TTL) setting.

Security White Paper
Whitepaper_MigrationWiz_Security.pdf

Was this article helpful?
0 out of 1 found this helpful