Kolbe Corp acknowledges the importance of maintaining our clients' data in a safe, secure environment. We do not share submitted client data with third parties, and only release data to authorized client representatives. Our WAREwithal databases are housed in a secure facility. As long as we store client data, we will continue to use industry best-practices to keep such data secure. We also perform daily and monthly data backups to assure data continuity in the event of unforeseen catastrophic hardware failure.
WAREwithal uses SSL (Secure Server Layer) certified by DigiCert, Inc. to ensure the security of personal and payment information submitted over the internet. Certificate and protocol analysis can be view at ssllabs.com.
WAREwithal data is stored in a co-location facility located in Phoenix, Arizona. In addition to physical and network security, the data is encrypted while at rest. WAREwithal was designed to accommodate the collection of Kolbe Index results, to analyze that data, and to link that data to the specific Index taker. The required collected information is first name, last name, and email address. WAREwithal does not collect, nor store, health and/or financial data linked to specific profile records. Account holders are only able to access and maintain records that are specifically associated with their account.
Located in Phoenix, Arizona USA
UTI Tier III Design Certified – Phase One
SOC1 Type 2
SOC2 Type 2
Network and Software Platform:
Data transmitted over Secure Socket Layer using SHA-256 with RSA Encryption validated by Third Party
Network Firewall with failover
Dell Secureworks monitoring
Web Application Firewall layer
Regularly patched servers
Encrypted backups of data, (encrypted when data is at rest).
Limited and managed user access with various levels of access depending on role.
Email via Microsoft Online Exchange
Google Analytics for site analysis
SiteUpTime, Site24x7, UpDown for performance monitoring
Woopra for real time site performance and usage analysis
Intercom for client support interfacing
This list is not limited to the providers mentioned. Additional providers for limited services that are not noted here will fall under the same standards as any contracted service providers. If non-public personally identifiable information is shared with a third party, a notice will be posted here as well as additional correspondence.
* Personally Identifiable information is not shared with third parties unless specifically noted.