Packcity - Outdoor

  • FAQ

    As the application gives the ability to manage Parcels Locker machines and track parcels, we collect user, recipient, mail/parcel attributes information. These pieces of information can be used for support purposes such as bug fixing but are never used for any commercial purposes (marketing, stats, …).

    Manage through Active Directory policy application. Strong password with at least 8 characters with 1 upper, 1 lower, 1 number, 1 non-alpha. Renewal all 90 days. Keepass tool is used to store in a secure way passwords.

    Yes, at least once a year or on customer request (at customer expense). Results are analyzed, and Patch management is applied to correct issues if discovered.

    There are procedures in place to triage and to remedy reported bugs and security vulnerabilities for product and service offerings. We have the capability to rapidly patch
    vulnerabilities across all of our computing devices, applications and systems. Additionally, source code analyzers (like Checkmarx or Burp) are also used to avoid OWASP vulnerabilities.

    Physical data center access is only restricted to authorized employees. All employees who need data center access must first apply for access and provide a valid business justification. These requests are granted based on the principle of least privilege, where requests must specify to which layer of the data center the individual needs access, and are time-bound. Requests are reviewed and approved by authorized personnel, and access is revoked after the requested time expires. Once granted admittance, individuals are restricted to areas specified in their permissions.

    All equipment is checked upon arrival. Visitors are screened upon entry to verify their identity, and in shared situations, are escorted to their appropriate locations.
    We also restrict personnel access to all hypervisor management functions or administrative consoles on the principle of the least privilege.

    More FAQ's...