![]() ![]() Multi-factor authentication (MFA) must be enabled for all administrators of a Sophos Central account.Ĭustomers may also assign pre-defined administrative roles to administrators that can restrict access to sensitive log data as well as restrict them from making changes to settings and configurations.Ĭustomer may enable access to its firewall to enable Sophos to troubleshoot specific cases. AccessĬustomers with Sophos Firewall can access their configuration in Sophos Central. Unless otherwise stated, Sophos will access data only to enable it to provide the services you have signed up for, to enhance features and services that bring benefits to the customer and for R&D innovation of future capabilities. Sophos is committed to complying with data protection rules and protection of personal data it processes on the platform. Sophos Central has achieved SOC2 Type II certification and PCI DSS v3.2 attestation to demonstrate its strong security practices, policies and internal controls environment.įor information about the security protections used in the data centers where Sophos Firewall data resides, visit the AWS Security Documentation Center. ![]() Sophos secures customer information by authenticating access via username and password based on managed Active Directory group membership coupled with multi-factor authentication. For periphery products such as CFM/ CFR, the data retention policy is set by the specific products and/ or licenses purchased by the customer. Sophos applies its retention policies to delete and purge data that is no longer needed for the purpose for which the personal data was originally collected. Visit our Sub-processor listing to find out more about sub-processors engaged by Sophos. Sub-processorsĭata processed by Sophos Firewall is hosted in AWS data centers in the region(s) selected by the customer at the time of Sophos Central account creation. Sophos processes the information identified above for the purpose of performing the service(s) to you in accordance with the Sophos Service Agreement. Firewall rules are set by the customer administrator and can be based on the source IP address. Information processed by Sophos Firewall including firewall configuration is available to the customer in Sophos Central. Purpose of Information Processed by the Sophos Firewall Sophos processes the following types of information in Sophos Firewall:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |