Security

FastRedaction.com takes security seriously. We recognize the need for law enforcement agencies to adhere to their regulatory obligations when using the site. To meet these obligations, we designed and operate FastRedaction.com to ensure that it aligns with the FBI’s CJIS Security Policy.

Robust Access Control

  • Password length and complexity requirements
  • Limited failed login attempts
  • Session timeout settings
  • Multi-factor authentication options
  • Unique user identification

Auditing and Accountability

  • Detailed, auditable logging of every access attempt including
    • Date and Time
    • IP address
    • Device
    • Unique identifier of the user
    • Outcome of the attempt
  • Video view history
    • IP Address
    • Video ID
    • Outcome
    • Device
  • All logs retained for at least 1 year

Encryption In-Transit and At-Rest

  • FIPS 140-2-compliant TLS ciphers for data in transit
  • FIPS 140-2-compliant AES-256 encryption for data at rest

Physical Security of Amazon Web Services (AWS)

  • FastRedaction.com is hosted on the secure and highly reliable AWS cloud infrastructure
  • AWS meets all CJIS requirements for a "physically secure location"
  • AWS data centers are monitored by trained guards 24 hours a day, video surveillance, and intrusion detection systems
  • AWS maintains control over physical access to distribution and transmissions lines

Credit Card Information

  • FastRedaction does not store your credit card information on its servers. When you submit your credit card information, we pass it to our payments processor Stripe, a PCI Service Provider Level 1 service.