top of page
Man working on laptop

Data Security

Data Protection Policies & Certifications

At the heart of our security strategy is our HITRUST and ISO27001-certified QTS Colocation Data Center in Sacramento, CA. This secure facility houses our hardware and network, protected by rigorous physical and digital safeguards.

comment-lock
Data Encryption

We employ robust encryption methods to protect your data both in transit and at rest.

user-key
Access Control

We enforce strict access protocols to ensure only authorized users can interact with sensitive systems and data.

limit-hand
Data Minimization and Purpose Limitation

We limit data collection to what is strictly necessary for defined purposes, reducing exposure and enhancing compliance with privacy regulations.

broom
Data Retention and Disposal

We retain data only as long as needed for legal or operational reasons, then securely dispose of it using industry-standard deletion practices.

Man close to electronic equipment
THG website elements 321
THG website elements 321
THG website elements 321
THG website elements 321

Building a Fortress for Your Data

On-Premises Security

THG website elements 321.png

Biometric-monitored entry for restricted physical access.

THG website elements 321

NIST 800-53 compliant infrastructure for industry-leading security standards.​

THG website elements 321

Fortinet firewall providing a robust network boundary.

RAPID 7's threat management SIEM for real-time security monitoring and incident response.

Sentinel One Antivirus for advanced malware protection.

Fortinet’s Multi-Factor Authentication VPN for secure remote access.

RAPID 7 SIEM integrates on premise and Microsoft 365 environments, and provides automated alerts.

woman working on digital hologram of a lockpad
creative images of various professionals

Online Security

THG utilizes Microsoft's Business-level licensed online products, including TEAMS, OneDrive, and SharePoint, for secure data storage and collaboration. Microsoft's comprehensive security measures ensure your data is protected both at rest and in transit.

Data  at Rest

Azure Storage Service Encryption (SSE): 256-bit AES encryption renders stored data unreadable without decryption keys.
​
BitLocker Drive Encryption: Physical disk encryption in data centers adds a crucial layer of physical security.
​
Per-File Encryption: Unique AES-256 encryption keys for each file, with new keys generated for every update, minimizing the impact of potential breaches.

Secure Key Management

Keys are stored in physically seperate, highly secure key stores.

Data in Transit

HTTPS with TLS 1.2 protocols secure all communications between clients and SharePoint Online servers, preventing eavesdropping and data tampering.

Integrated Security Monitoring

Real-Time Threat Detection

Our RAPID 7 SIEM solution provides real-time monitoring of both our on-premises servers and the Microsoft 365 environment. Automated alerts ensure our security team is immediately notified of any potential threats, allowing for swift and effective response.

girl before an ominious vibrant red circle in dystopian city
Tower with digital padlock top

Compliance

Our Commitment to Excellence

THG's commitment to data security is reinforced by our adherence to industry-leading standards and certifications, including HITRUST and ISO27001.

Security and Privacy Training Programs: Our employees undergo regular and mandatory training on data security and privacy best practices.

Confidentiality Agreements: All employees are bound by strict confidentiality agreements to protect sensitive information.

pixelated black bg

The Henne Group's culture is
Data Security

bottom of page