How TripActions Securely Handles Customer Data

Last Updated April 14, 2021

Industry Standard Security

State-of-the-art encryption

TripActions’ clients’ data is transferred using multi-layered security, highly secure networks and Transport Layer Security (TLS 1.2+) encryption for data ‘in-transit’. Sensitive data ‘at-rest’ in storage is encrypted using the Advanced Encryption Standard (AES-256-GCM), the current industry standard for modern commercial business applications.

Data center security

TripActions’ client data is stored in highly secure AWS cloud-hosted data centers located in multiple regional availability zones to support TripActions platforms and apps. AWS data center facilities use innovative secure architectural engineering methodologies, built from decades of experience designing, constructing, and operating large-scale highly reliable commercial data centers, which is directly applied to TripActions’ platform, and infrastructure.

Multi-factor authentication (MFA)

Access to TripActions’ networks, business systems, and client data in AWS cloud-hosted data centers requires the use of Multi-Factor Authentication (MFA) and Single Sign-on (SSO) credentials managed by TripActions Information Technology Services Operations (ITSO) department.

Real-time audit log

TripActions maintains real-time logs of data changes made by administrators, customers, employees and TripActions systems. TripActions' security, support and engineering teams constantly strive to keep clients' data as safe as possible at all times.

3rd party testing

TripActions’ website, micro-services and Application Programming Interfaces (APIs) are regularly subjected to vulnerability and penetration testing, security scans, threat detection and security assessment testing by cyber security professionals.

High Availability Infrastructure

Uptime

TripActions’ AWS cloud-hosted architecture and use of contemporary technology ensures the availability of clients information, with client data access and security being of the highest business priority.

Redundancy

TripActions’ product architecture and daily source code deployments are designed for resiliency, and maintaining continual functionality and availability.

Recoverability

TripActions performs backups multiple times a day, and stores backups in multiple secure remote locations, as part of TripActions’ disaster recovery plan.

Questions?

Contact TripActions using this web form https://tripactions.com/contact or by calling corporate sales for more information +1 (888) 505-TRIP (8747).

See TripActions in action

See why more than 8,000 customers choose TripActions to modernize their Travel and Expense program.

Already have an account?

Log in.