Your security is of utmost importance to us
With the netfiles data room, your valuable documents are safe online: SSL encryption and an efficient permission system offer the highest level of protection against unauthorized access – and all that with 99.9% guaranteed availability.
Accredited high-security data centers in Germany
The servers of netfiles are located georedundantly in two highly secure data centers (Munich and Nuremberg) of the German operator noris network AG. The modern data centers features 360° security systems, round-the-clock surveillance 365 days a year, multi-level access controls, automatic fire protection systems, air-conditioning technology, an uninterruptible power supply and a direct link to the Internet backbone.
The data centers have received several awards and hold various certifications including ISO 20000-1, ISO 9001 and ISO/IEC 27001.
All servers and applications are observed by netfiles GmbH and its partners 24/7 using redundantly designed monitoring systems. If a problem should occur with a component, it will be repaired immediately by a service team that is also available round-the-clock. All systems and components are designed redundantly. If some unforeseeable event causes a complete failure of the data center, the entire functionality can be taken over in a short time by a hot stand-by system in another data center.
Protection against unauthorized access
We use a highly available firewall cluster. The work environment consists of double firewall protection and a physically separated, dedicated management server. This provides highest level of security and optimal protection against third party attacks.
Access to the data room in netfiles is possible only with a valid combination of user name and password. After login, all data communication between the user's web browser and the data servers is encrypted over the internet using 256-bit SSL. Besides that an additional security option "2-factor authentication" (via text message or Authenticator/OTP app) is also available for login to the data room.
256-bit AES encryption
netfiles uses the 256-bit Advanced Encryption Standard (AES) to encrypt your data. This algorithm is widely regarded as one of the most secure encryption algorithms in the world and is the solution of choice for governments and banks.
All data communication between the users web browser and the netfiles application servers is encrypted using the TLS protocol. The security of the SSL/TLS encryption of the netfiles servers can be checked at any time via the well-known Qualys SSL Labs Test.
All files are scanned for computer viruses when uploaded to netfiles data rooms and the upload of viruses, ransomware or other malware is reliably prevented. The virus signatures are updated hourly.
Rigorous security check
The netfiles application undergoes a rigorous security check at least once a year. This test is carried out by SySS GmbH in Tubingen. SySS GmbH specializes in security and penetration testing.
IT Security made in Germany
The netfiles GmbH is member of "TeleTrusT – Bundesverband IT-Sicherheit e.V." and bears the TeleTrusT quality seal "IT Security made in Germany".
For the protection of personal data netfiles GmbH is subject to the strict regulations of the EU General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). netfiles guarantees you GDPR-compliant work and maximum security in the processing of data.
ISO 27001:2013 certification
The certification unit of TÜV SÜD Management Service GmbH certifies that netfiles GmbH complies with the requirements of ISO/IEC 27001:2013, attesting that netfiles GmbH has introduced and uses a documented information security management system which covers its "marketing, operational and support activities for the netfiles application for virtual project and data rooms". This management system also meets the requirements of ISO 27017:2015 for the implementation of cloud services and ISO 27018:2014 for the protection of personal data in public cloud services.
The process of acquiring ISO 27001 certification involves auditing IT security procedures and validating data protection and information security.
SOC 2 Certification
netfiles GmbH has been successfully audited by an independent auditing firm for compliance with the "Trusted Criteria" of data security and data protection according to the internationally recognized standard SOC (System and Organization Controls). The internationally recognized SOC standard is issued by the renowned auditing body American Institute of Certified Public Accountants (AICPA).
BSI C5 Certificate
netfiles meets the requirements for the security of cloud services defined by the German Federal Office for Information Security (BSI) in the Cloud Computing Compliance Criteria Catalogue (C5).
ISO 22301:2019 certification
The Business Continuity Management System of netfiles GmbH has been certified by TÜV Rheinland according to ISO 22301:2019.