Next Wave Connect Security

 

NWC Ecosystem

Next Wave Connect is committed to security, availability and the privacy of your data. We want to assure you that your data is safe and secure within our application. We protect your information and do not share it or sell it without your permission.

All content communication from your browser to our website and within our critical services is encrypted via HTTPS.  HTTPS is a secure means of communication and is used to protect the transactions and keep your data secure.

At Next Wave Connect, we use state-of-the-art technology to help protect your information and we employ highly trained and experienced staff.  All system critical services are run on SOC2 certified infrastructures (Amazon Web Services, Auth0 and Compose). SOC2 reporting assures our customers that we have systems in place to safeguard their data and information. SOC2 audits security, availability, process integrity, privacy and confidentiality.

The Next Wave Connect application runs on Amazon Web Services (AWS) secure servers. The AWS cloud infrastructure is one of the most flexible and secure environments available today. It provides us an extremely scalable, highly reliable platform to deploy applications and data quickly and securely. AWS data centers utilize state-of-the art electronic surveillance and multifactor access control into their data systems.  The data centers are staffed 24x7 by trained security guards, and access is authorized strictly on a least privileged basis. All of our critical services are hosted on AWS.

 

Hosted Inside the AWS Environment

The Mongo database for storage which offers us the scalability and flexibility needed to support the environment and provide maximum performance within the application.  Compose.io is the service provider that hosts our Mongo database services which are highly reliable and secure.

 

Node.js is an open source, cross-platform runtime environment that allows us to build fast, scalable network applications. Our application is written in JavaScript and node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient which optimizes our throughput and scalability.  All servers listed in the network diagram are running node.js programs.

Elastic Search, also provided by Compose.io is in a secure AWS datacenter,  is used to provide powerful full-text search capabilities within the product. All data is immediately made available for search and analytics. It is designed to take data from any source and search, analyze, and visualize it in real time.

Background processing is done by a worker process, also running in AWS. There is no external access to this background service (for example, a website). We can run tasks concurrently by using the least amount of resource power necessary to complete a task.  This allows us to process jobs asynchronously and move certain tasks to the worker server while keeping the user response within a realtime window and still being able to perform other actions needed.

 

Hosted Outside the AWS Environment


Next Wave Connect Network Diagram (click to enlarge)

The following non-critical services are hosted outside the AWS environment and do not transfer any critical sensitive data.

Papertrail is our log management tool.  It help us to diagnose issues quickly and track down customer problems, error messages, application requests, DB queries, config changes and many other items that we may need to look into. We do NOT log any PII data.  Our information is secure and safe within our logging tool.

Google analytics gives us and our customer’s key insights that help drive engagement in the application.  It shows us exactly how people are using the product where they take action, if they pause or disappear.  Analytics can help boost sales, find more visitors and improve your overall business.  We do log IDs which represent users, posts, and communities in Google Analytics but there is not a way to get back to any user identifiable information from the ID we use.

New Relic is used to help monitor the server health and verify everything is up and running efficiently.  It helps us monitor the capacity on the servers, the prioritization of processes in memory, CPU consumption and overall performance of the application and end-user experience.