Client Data Policy

Clients using cloud-based services often have privacy concerns that include data security and data regulatory compliance. At Progress we take these concerns very seriously and have designed Progress Data Cloud to ensure your data is safe and secure. Such features include:

• Data isolation - Progress Data Cloud is a multi-tenant service, meaning that multiple customers' services are stored on the same physical hardware, though each tenant environment is isolated from the others.
• Protecting data in transit - Progress Data Cloud utilizes “https” to encrypt all traffic to and from the service.
• Data redundancy - All model data managed in Progress Data Cloud is stored on a redundant array of triple-store database servers to ensure client data is always available.
• Restricted infrastructure access - Access to the Progress Data Cloud infrastructure is only possible via a private and encrypted VPN connection established solely by Progress Data Cloud administrators.
• Incident management and response - Our technical support team are on hand 24 hours a day to respond to "Severity 1" service issues that arise that might prevent you from accessing your model data. When an issue is identified, we work quickly to address the problem and then adjust processes to avoid such issues occurring again.

More information about how we protect your data can be found in our Privacy Policy or Progress Data Cloud End-User License Agreement.

Furthermore, as Progress Data Cloud services are currently hosted on Microsoft Azure, they inherit the security and privacy policies Microsoft has in place (see https://azure.microsoft.com/en-us/overview/trusted-cloud/ for details).

Progress stores the following customer data in Progress Data Cloud:

• The customer’s models (if the customer uses the Semaphore “Studio”, “Semantic Enhancement Server” or “Concepts Server” services)
• Configuration data for the Progress services used by the customer
• SharePoint Online configuration information (if SharePoint Online in use)
• Log data for services used by the customer (retained for a period of 12 months)
• Customer email addresses for authentication which if required can be anonymised using, for example, a Microsoft Active Directory alias
• MarkLogic Server databases and configuration
• MarkLogic Server app services and configuration
• MarkLogic Data Hub databases and configuration

Progress Data Cloud does not itself store:

• Personal information about users.
• Customer files, text-based information from client operational systems or transactional data.

UNLESS the customer themselves puts this information into the platform, for example, by adding documents containing this information into a “MarkLogic Server” database hosted in Progress Data Cloud.

The customer may choose to purge older data themselves through mechanisms provided within the Progress Data Cloud hosted services.

Note that Progress Data Cloud retains statistical information used for auditing and Progress service reporting for a rolling twelve (12) months. For example, a Semaphore Classification Server service customer may view classification history for the past twelve (12) months but no longer.

As per the Progress Data Cloud EULA, if a tenancy is removed or a customer’s use of Progress Data Cloud services is terminated, after 30 days Progress will destroy all copies of the customer’s data stored by Progress. If requested before 30 days, Progress will supply the customer with a copy of their data. Please see your agreement for more detail.