Access control based on digital certificates and multi-factor authentication
Access to dLockBox is only possible by using the digital certificate. The client decides which computers can be used as access points.
In addition, it is possible to set up a PIN code for each access request. Without both of these security measures combined,
information stored in dLockBox will not be accessible. Similar security level is used in the banking industry. This approach
eliminates frequent problems related to username and password authentication. The same certificate can be used for encryption
and for signing digital documents and e-mails.
Access control based on user location and time lock
Similarly to the banking industry, we also offer additional protection mechanisms. For example, authorized users can access
dLockBox from predefined sites and during specific hours only. If an authorized computer was stolen or the office broken
into outside of the working hours it will not be possible to steal data from the Safe.
Easy to use
dLockBox was designed in a simple and user-friendly way. It can be easily integrated with Microsoft Windows, Apple MacOS, Linux.
After dLockBox is unlocked, customers can use it like an ordinary external drive with additional features.
Ransomware resilient
All data stored in dLockBox is automatically protected with a backup copy. Additionally, archived data can be protected
against any modifications. If something wrong happened to the client’s PC, data archived and stored in the dLockBox
will remain intact.
Temporary data sharing with trusted persons
Selected part of data stored in dLockBox can be safely shared with trusted persons for a specific period of time.
Similarly to the dLockBox safe box owner access, it requires a dedicated certificate and can also be covered
by additional access controls like geo and time restrictions.
Data access log
Clients gain access to the data log in a similar way to getting an account history from the bank.
All data modifications, such as uploading, downloading and deleting, are recorded. In can be determined exactly
who made the changes, when the changes were made and what was modified.
Advanced security solutions
In addition to access protection mechanisms described above, it is also possible to use digital certificates generated
by the client on their own (the so-called Bring-Your-Own-Key scenario). A SmartCard can be used to store digital certificate as well.
Separation of the dLockBox access key from client’s computer is another security measure.
In Case of Emergency procedures (ICE)
The ICE procedure is initiated in case of a long-term unavailability of the dLockBox account owner. It ensures a safe transfer
of the "key" to a specified person. With the ICE procedure, the most important data will remain available to the person
indicated by the dLockBox account owner. This function is available on demand after the initial configuration is completed.
Durable Medium – EU 2007/64/WE regulation
Proven delivery of legal documents in a digital form requires additional technical and organizational measures.
dLockBox can be used as a Durable Medium in accordance with the European Union directive on effective delivery of financial documents.
Multi-cloud, EU GDPR compliant
We use many (public and private) cloud computing platforms in parallel, which guarantees much higher availability of service
than a single provider. Failure of one of the suppliers does not cause any disruption to our service.
We maintain full control over the location of stored data and independence of our service from changes made by cloud vendors.
Data processing procedures are designed in accordance with the legal requirements of the European Union.
This is especially important with regard to the privacy of stored information.
