Purpose

The below information covers the CartonCloud technology platform, architecture, servers and redundancy provisions.

Definitions

Tenant - A tenant is an organisation within CartonCloud. For example: "Freight Company A" use CartonCloud; they're considered a tenant. 

Software Architecture

CartonCloud is built upon several technologies, including Java, PHP and NodeJS. In addition, we use a variety of 3rd party paid-for and open-source libraries.

All tenants run from a single code-base, with 'pluggable' modules providing tenant-specific functionality that is not part of the primary application.

Database Architecture

CartonCloud uses several database technologies, including Postgres, MYSQL and Snowflake. In addition, data is partitioned per tenant to prevent inadvertent data leakage across different tenants.

Servers

CartonCloud is hosted on Amazon Web Services (AWS), and infrastructure may be distributed across multiple regions for performance and/or redundancy purposes.

Critical processes can also be deployed across multiple "availability zones", meaning that if one area goes down, the system will continue to operate without outages.

Networks

Databases and other critical internal services are located on private internal only networks with only specified public access points available on internet accessible networks.

Redundancy Provisions & Backups

File System

Files uploaded to the system, such as Manifests, Signatures and Photos captured from the Mobile App, and Invoices scanned in, are held in cloud based storage with stated 99.999999999% of data durability.

Databases

Database replicas and snapshot backups are utilised to ensure data is protected even in the event of major disasters.

Security

All communication with the CartonCloud system is only allowed for authenticated users and encrypted using TLS 1.2.

CartonCloud utilises a combination of proprietary and third-party tools for logging, monitoring and unauthorised access prevention. 

From time to time, external penetration testing is conducted to identify any possible security weaknesses to plan risk mitigation and remediation work as needed.

Account Closure

If an account is shut down (tenant leaves CartonCloud), it will be deactivated, but data will be retained in our live environment for at least 90 days, during which time the account can be reactivated. After which time, data will be archived for internal record keeping purposes but cannot be restored into a live tenant. Archived data will typically be retained for approximately one year before being permanently deleted.