We take your privacy and security seriously at Cloudiway, and we have invested significant effort into making our platform and your data secure. Cloudiway provides a cloud-based application hosted on Windows Azure. It means that the software and data are centrally hosted and accessed by clients using a web browser and internet connection. In addition, Cloudiway’s SaaS benefits from Windows Azure’s certifications, ensuring the security of the infrastructure, network, and physical security layers of the Cloudiway cloud.

For total assurance, Cloudiway provides auditing tools, secure, authenticated data connections and a logging system. More specifically:

• Cloudiway doesn’t store your mail, files or site data
• the migration takes place in memory only: the migration engine connects to the source, pulls data and pushes it in real time;
• connections to the source and the target are done using HTTPS so no data is transferred unencrypted over the internet; and,
• nothing is stored internally: no data persists in the platform.*

*For the delta pass mechanism, the messageID of each email is used. This ensures that no data is duplicated.

We automatically delete inactive records after 90 days, or upon request.

In addition, because the Cloudiway platform needs credentials to connect to the source and the target, you define connectors to connect to them and enter credentials that will be used for the connection. These credentials are stored encrypted using AES 256.

For complete peace of mind, we recommend that you create a temporary migration account during your migration which you can delete at the completion of your project.