Nova tools from Nova 4 You PTY LTD, is a modern Software-as-a-Service (SaaS) company using third-party cloud-providers and modern agile product development processes to be able to provide a competitive product in a fast-moving landscape.
Nova Tools security measurements are compliant with applicable law and are following industry security standards for cloud services.
Technical and organisational measures
Nova Tools servers are hosted on AWS.
Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards.
All our servers are located within USA, EU, AU
Nova Tools services have a goal of being available 99.99% on a yearly basis. Health status for Nova Tools services can be found on status.Nova Tools.com.
Nova Tools is written in the web framework Symfony and has been tried by the open source community in terms of security. Nova Tools Technologies are built in PHP, Go and Python. Applications are running in security patched linux environments.
Employees and consultants at Nova Tools may be granted access to production data by granularity levels. Two-factor authentication is enabled when applicable. Changes to customer’s content through the services are logged.
Nova Tools are performing backup of customer data. Backups of customer data are kept for 30 days for system recovery. Application logs are stored in separate systems and are retained for a longer time for information security consistency.
Nova Tools uses automatic code-tests to ensure that new changes doesn’t break existing functionality. All code is also being reviewed by another person before merged into the master code tree. On top of that we have a manual Q&A process for testing new functionality before it’s being released to production.
Code updates to production environment is done on a daily basis. Each release to production carries information with traceability.
Security & Privacy Governance
Nova Tools have assigned Data Privacy Officers within the company that are governing technical and organisational measures on how we are processing personal data according to applicable law. Nova Tools have designated people that are working together with NHST Media Group to ensure compliance with NHST information security policy.
Employees, contractors, sub-processors
All devices of Nova Tools employees are individually password-protected and encrypted as defined in an internal IT-policy.
Nova Tools has established a routine for managing personal data breaches with an escalation program to ensure that we can notify affected parties as soon as possible and that we can report about an incident within 72 hours to the data authority in France (CNIL).