1. PCI Compliance
Fusebill protects your customer and credit card data in our PCI compliant facilities.
PCI DSS is an abbreviation for PCI Data Security Standard, the worldwide information security
standard set by the Payment Card Industry Security Standards Council to help control and
minimize points of risk to fraud or compromise of sensitive information.
PCI Compliance is an adherence of the policies and procedures that Fusebill handles information to
the PCI DSS standard.
Credit Card Data Portability Standard
Fusebill adheres to the Credit Card Data Portability standard. This means that if
you choose (for whatever reason) to terminate your relationship with Fusebill,
we will help securely move your credit card data to you, or to a new provider.
High Availability
Fusebill provides a high-availability recurring billing service for all of our customers. Fusebill has
invested significantly in systems, hardware and processes that keep the service running smoothly and
we’re proud of the results.
We monitor our systems externally using Pingdom and the real time results are available in real time in
the Support section of the Fusebill website (click here). Historical data for the last few months is also
available. We publish the availability of three systems:
Fusebill – the main website
Fusebill App – the core Fusebill billing application
Fusebill API – the systems used for API level integration
When you check, you’ll see a series of green circles indicating that the service is operating normally. In
the rare event of a problem then you’ll see an orange or red indicator – and our operations team will be
working continuously until it is restored.
Fusebill Reliability and Security
Fusebill is the product of a 10 year history of building & running large scale billing
systems with hundreds of thousands of subscribers. We've lived the pain of billing
outages & architected Fusebill to avoid them. Fusebill is reliable, secure and offers
high availability to all of our customers.
2. Reliability and Backup
All network components, SSL accelerators, load balancers, Web servers, and application servers are in
redundant configuration. All customer data is stored on a primary database server that is clustered with
a backup database server for redundancy and backed up regularly. Disaster recovery plans are in place.
Physical Safeguards Fusebill servers are housed in a secure environment that includes 24-
hour physical security and is accessed by approved personnel only. All
information that passes through the Fusebill internal server
environment remains protected, secure, and all servers have built in
backup for continuous operation. Redundant electrical generators and
data centre air conditioners are on standby in case of emergency.
Perimeter Defense The network perimeter is protected by multiple firewalls and monitored
by intrusion detection systems.
Data Encryption Fusebill leverages the strongest encryption products to protect
customer data and communications, including Trustwave Premium
Extended Validation SSL Certificates which use 256-bit encryption.
User Authentication Users can only access the Fusebill service with a valid username and
password combination, which is encrypted via SSL while in
transmission.
Application Security Our robust application security model prevents one Fusebill customer
from accessing another’s data. This model is reapplied with every
request and enforced for the entire duration of a user session.
Internal Systems Security Inside the perimeter of firewalls, systems are safeguarded by network
address translation, port redirection, IP masquerading, non-routable IP
addressing schemes, and more.
Operating System Security Fusebill protects all operating system accounts with passwords, and
production servers do not share a master password database.
Database Security Access to production databases is limited to a number of points, and
production databases do no share a mast password database.
Server Management Security All data provided by a customer is owned by that customer. Fusebill
does not utilize any managed service providers. The Fusebill Operations
team provides all system management, maintenance, monitoring, and
backups.
Fusebill
Fusebill automates invoicing, billing and collections for subscription based companies. Ideal for both B2B and B2C businesses, our
customers span many industry sectors, including software as a service, digital media, and communications. Our customers rely on
Fusebill to reduce their costs, speed their cash collections, and extend their customer lifecycles.
1-888-519-1425
www.fusebill.com
Email: Sales@fusebill.com
Twitter: @fusebill Copyright Fusebill Inc, 2012. All rights reserved
FBR&S1210