Data processed using the Strato service is safely stored using the Windows Azure storage services.
Microsoft datacenters are located within three major geographic regions: Asia, Europe and United States. The specific region is selected by the Auditdata Cloud Operations unit, based on the geographical location of the customer, to support compliance with national or regional data protection legislation.
Microsoft will not transfer Customer Data outside the major geographic region(s) customer specifies (for example, from Europe to U.S. or from U.S. to Asia) except where necessary for Microsoft to provide customer support, troubleshoot the service, or comply with legal requirements; or where Auditdata’s Cloud Operations unit configures the account to enable such transfer of Customer Data.
Auditdata does not control or limit the regions from which customers or their end users may access Customer Data.
See the E.U. Data Protection Directive section below for information on the regulatory framework under which Auditdata transfers data.
For detailed information on Microsoft Windows Azure location of customer data, please see Windows Azure Trust Center
Customer Data and Other Data Types
Customer Data is all the data, including all text, sound, software or image files that an Auditdata Customer provides, or is provided on the customers behalf, to Auditdata through your use of the Services. For example, Customer Data includes data that you upload for storage or processing in the Services. It does not include configuration or technical settings and information.
Customer Data includes sensitive personal data. Strato is designed specifically for secure and safe handling of sensitive personal data, and meets legal requirements on encryption and secure handling of sensitive personal data during processing (transfer, in-memory and at rest).
Administrator Data is the information about administrators (including account contact and subscription administrators) provided during sign-up, purchase, or administration of the Services, such as name, address, phone number, and e-mail address.
Access Control Data is used to manage access to other types of data or functions within Service. It includes passwords, security certificates, and other authentication-related data.