Data Residency & Control for Salesforce

Secure Salesforce, Chatter and Force.com Data

Encrypt or Tokenize Data and Maintain Critical Functionality

Need Salesforce encryption or tokenization to protect your data? The PerspecSys Cloud Data Protection Gateway for Salesforce.com allows organizations to keep control of their sensitive business data while using Salesforce.com, Chatter and Force.com.  Any sensitive information that leaves a business’ environment and enters the Salesforce.com cloud can be tokenized or encrypted, ensuring that data remains undecipherable when it is being processed or stored outside of the enterprise’s environment

How Does It Work?

The PRS Server is the core of our data protection solution. The PRS Server acts as forward proxy server operating between the Salesforce.com end user and the Salesforce cloud. The enterprise configures its data protection policies (cloud encryption and/or data tokenization) within the PRS Server. Salesforce.com encryption protects an organizations data when using the Salesforce cloud. The PerspecSys Salesforce.com Adapter interfaces with this server and, given its understanding of the application and data layer operation of Salesforce, plays the critical role of preserving end user functionality, such as the ability to “Search” and “Sort” data, in Salesforce.com and Force.com applications.

A management console permits authorized users to maintain data protection, administrative and security policies (such as permissions and access control) for sensitive data so that it can be protected before it is stored or processed in Salesforce.

Optional components that are also available are the Mail Transfer Agent Server (used to enable e-mail functionality for Salesforce) and the Reverse Proxy Server, which provides flexibility in deployment options, such as the ability to deploy the solution in DMZs or in the facilities of an organization’s IaaS partners.  The Reverse Proxy Server provides the additional benefit of providing secure access to the PRS Server for remote users (without requiring them to VPN into the PRS Server).

Salesforce cloud security diagram

Key Capabilities for Salesforce Encryption & Protection:

  • Field-level data protection with user defined tokenization or FIPS 140-2 encryption options while preserving end-user cloud functionality
  • Use of industry standard, well vetted encryption algorithms (not proprietary cryptography) or 3rd party validated tokenization techniques
  • Mobile and remote users can be easily connected via a reverse proxy component
  • Identify and restrict access and use of sensitive data through black and whitelists and through regional or group designations

Download the Salesforce Security Solution Datasheet >

Request a Demo >

 

Next Steps


 


 


“We reviewed other competing solutions and quickly concluded that the design approach taken by PerspecSys, which enables its solution to fully maintain Salesforce.com functionality whilst offering the strongest options for protecting data, would enable us to have the best solution to underpin our data residency and security offering for our Salesforce.com customers”

Andre Klose-Managing Director,
ClientHouse

 

“We are not tokenizing just one or two fields for credit cards, we tokenize anything and everything. We won’t send any client-related information outside of our firewalls. PerspecSys gives us peace of mind and enables us to take advantage of the cloud offerings that require us to have data outside the firewall.”

Director for Strategic Projects,
Top 5 Financial Institution

 


Products

How We Help

Resources

Company

UNITED STATES +1 (703) 712-4752
1750 Tysons Blvd, Suite 1500 - McLean, VA 22102

+1 (415) 655-6733
71 Stevenson Street, Suite 400 - San Francisco, CA 94105
CANADA +1 (905) 857-0411
86 Healey Rd. - Bolton, ON L7E 5A7
Follow Us
Facebook Twitter LinkedIn LinkedIn LinkedIn
Copyright © 2013 PerspecSys Inc.

EUROPE +44 (207) 868-2037
68 Lombard Street - London, EC3V 9LJ