Security and Privacy

Technical and organizational security measures

Authentication and encryption

• Encrypted communication: MultiNet uses 256-bit TLS 1.2+ encryption, with 2048-bit RSA keys. All communication to and from the user's computer is encrypted with TLS 1.2+, the most widely used Internet standard for encrypted communication.
• Password protection: The entire process while logging in is encrypted, meaning that no information is sent in clear text. The user's password is stored in a one-way encrypted format.
• Automatic sign-out: To avoid unauthorized access to your information, the system automatically signs out the User in case they're inactive for more than 30 minutes.
• Continuous verification of users: Every request sent to MultiNet's servers forces a check of the logged-in user's permissions.

Data center and co-location hosting

• Geographic location for processing and storage of your data: All the data (including Personal Data) that MultiNet processes for the Customer is mostly stored in Sweden. In some cases, depending on optional add-ons that require sub-processors, data may be stored in the EU or other countries.
• Fire safety: The data center has automatic smoke detection and inert gas suppression systems, and the halls are split into separate fire zones.
• Climate: Climate control makes sure that the temperature is kept low, and air moisture optimal.
• Internet connection: High-capacity connections ensure customers access to the Service.
• Secondary power: The data center is equipped with a secondary power supply and diesel generators for 24/7 permanent access to backup power.
• Access to the data center requires pre-authorized personnel and verification with a key card and code.
• MultiNet owns all hardware like servers, switches, and network appliances which are installed in locked cabinets in the co-location data center.

System architecture and backup

• Multi-layer redundancy for network and server hardware.
• MultiNets services are built on modern Microsoft Windows Server and Microsoft SQL Server platforms.
• Redundant firewalls: MultiNets servers and networks are protected by primary and secondary firewalls, with DDoS protection.
• MultiNet is proactive with surveillance and analysis of firewalls and system logs.
• Disaster recovery: MultiNet's backup routines have complete coverage of the system, ensuring continuity. Full backups are done every 24 hours, and incremental backups are done every hour. Backups are transferred to two separate locations in Sweden. Full system restore from backup can be done within 72 hours. Restore tests are done continuously.

Knowledge and information protection

• All personnel working for MultiNet are bound by confidentiality and non-disclosure agreements, prohibiting the spread of customer information.
• MultiNet personnel are only given access to the customer information they need according to their role and responsibilities.
• MultiNet works according to documented management and information security systems.
• MultiNet's staff is continuously trained in security, data protection, and in each individual's specific area of expertise.
• MultiNet works according to the principles of "least privilege", "privacy by design" and "security by design".

Current status

MultiNet is dedicated to making web services available 24/7 all year round so that you as a user can work whenever you want.

On our status page https://status.multinet.com you can follow the current status of all services. There you can also sign up for automatic e-mails for any operational disruptions.