We encrypt data transfer between the Client’s computer and Comarch IBARD servers using the 256 bit SSL protocol. The same protocol is used to communicate with online banking services that we use very day.
We encrypt data using the 256 bit AES encryption algorithm. Data is encrypted on the user’s computer with the help of a pre-generated encryption key stored locally on the Client’s side. There is no way to decrypt data without using a unique key held only by the service’s user.
Our solution is based on a highly efficient and scalable object-oriented disk cluster. The system is based on a distributed structure consisting of individual nodes with disks connected to each other by a high-performance network. The capacity and performance of the system is increased by adding another node. The solution provides full data redundancy resilient to disk, node, and even location failures.
Comarch Data Center is an innovative and certified (e.g. ISO/IEC 27001:2005) data center complying with the highest security standards. It allows us to store data of Polish clients in the territory of our country.
Each of the Comarch Data Center facilities complies with at least the Tier III standards. In practice, this means that there are several levels of necessary performance elements built into the IT infrastructure to ensure the highest level of security.
Additionally, we are regularly audited to maintain the highest standards in the industry. Upon request, clients can perform an audit themselves or have an external institution do it in one of our data centers.
All server rooms have their own voltage generators, activated in case of a power outage.
Our UPS power systems keep Comarch Data Center running until the generators are activated and reach their full capacity.
It is based on an inert gas that is suitable for extinguishing equipment in server rooms and safe for people.
It ensures optimum temperature and humidity for equipment operation.
The common part of most systems operating in Comarch Data Center is the network infrastructure. It is a separate part of Comarch’s internal network, divided into zones dedicated to systems performing different functions and characterized by different criticality levels.
Active devices used to build Comarch Data Center LAN come from leading manufacturers of network and security solutions. The architecture provides the redundancy of critical devices and access links. Currently, we use links from four independent operators, minimizing the risk of system unavailability in case of a single link’s failure. The network topology assumes the separation of dedicated subnets for each system and each Client, thus preventing direct communication between different environments. Network traffic between zones is separated by firewall systems. They are complemented by intrusion detection systems that analyze network traffic for potential attack attempts.
Comarch’s overriding aim is to deliver services of the highest quality to the company’s Clients. This also applies to Comarch Data Center whose activity is covered by the Integrated Management System which is implemented and maintained throughout the company. Comarch’s Integrated Management System meets the requirements of the following standards: EN ISO 9001:2009, EN ISO 14001:2005, ISO/IEC 27001:2007, PN-N 19001:2006, PN-N-18001:2004.
Confirmation of compliance with particular standards is the certificate of the Integrated Management System, issued by the Polish Center for Testing and Certification, which cooperates with Comarch in terms of surveillance and certification audits.