Data Security and Compliance

About our client portal

Tianlong Services provides maximum protection for your files and communication.

We take the security of your data seriously at Tianlong Services. Your data will be protected to the highest possible level with bank-grade security, encrypted backups and additional security measures such as two-factor authentication, complex passwords and controlled user-based permissions.

security at tianlong services

Data Security

For data transfers and storage, Tianlong Services uses end-to-end encryption, with 256 bit SSL in transit and AES encryption at rest — the same level of encryption you find with banks. Tianlong Services also supports TLS 1.2 for all communication.

PERMISSIONS AND AUTHENTICATION

We go beyond offering bank-grade encryption for Tianlong Services clients. There are additional security measures that you can take in order to enhance your data protection and comply with industry standards.
  • Two-factor authentication – Users require something they know (i.e. password) and something they have (i.e. smartphone) in order to access their account.
  • Complex passwords – When your users are setting up their account, you can opt to have them use a combination of letters, numbers and special characters for their password.
  • User-based permissions – Each user has set permissions, defined by the account administrator, enabling the relevant viewing or editor rights.
  • Audit trail – Account administrators can organise and track user activity and generate CSV reports. User activity includes who has viewed, downloaded, created, updated, deleted and logged in to their account.
  • Automatic account lockout – When a user tries to log in to their account and has been unsuccessful after 6 password attempts, his/her account will be locked for 1 hour.

Compliance

Tianlong Services uses Amazon Web Services (AWS) for hosting its data centres for public cloud solutions, which are ISO 27001, SAS70, PCI certified, HIPAA compliant and by being FISMA and FIPs certified.

HIPAA COMPLIANT

Tianlong Services implements the following security processes and protocols that make it part of a HIPAA compliant solution: encryption for documents in transit and at rest, complete audit trails, automatic log off, controlled logins and granular access to files and folders.
  • End-to-end encryption – We use 256 bit SSL in transit and AES encryption at rest.
  • Audit trail – Account administrators can organise and track user activity and generate CSV reports. User activity includes who has viewed, downloaded, created, updated, deleted and logged in to their account.
  • Automatic log-off – Users are automatically logged out each time they leave your portal, or they can be automatically logged out of their account every 30 days.
  • Controlled logins – Implement authenticated logins and Administrators can view the audit trail to see when users have logged in.
  • Granular access to files/folders – Administrators have complete control over which members are able to view, edit, download and delete content.
No Obligation

Request a free trial

You will get a month’s worth of bookkeeping. Whether or not you continue with us, your reports for the month are yours to keep.