Obtaining Security Information for Oracle Live Help (Doc ID 1645920.1)

Last updated on JUNE 28, 2017

Applies to:

Oracle Live Help On Demand - Version 1.0 to 1.0 [Release ATG v1]
Information in this document applies to any platform.

Goal

 Where can we get answers to these security questions for the Live Help product line?

Security Questions for Oracle Live Help

Category

Item

Audits and Testing

Do you allow customers to view your SSSAE 16 SOC2 or similar third party audit reports?

 

Do you conduct network penetration tests and web application scans of your infrastructure regularly as prescribed by industry best practices and guidance?

 

Do you conduct internal audits regularly as prescribed by industry best practices and guidance?

 

Do you conduct external audits regularly as prescribed by industry best practices and guidance?

 

Are the results of the network penetration tests available to customers at their request?  External report may be made available upon written request.

 

Do you have external third-party conduct scans and periodic penetration tests on your applications and networks?

Access and Storage of Call Data

Are calls and text messages saved?  If so, how long is the data retained?  What is the procedure for disposal of data?

Are calls and messages encrypted during storage?  If so, what is the encryption methodology?

Does anyone, other the customer representative and caller, have access to calls and messages?

Can calls or messages be transferred outside the infrastructure, such as email or on removable storage media?

Can calls or messages be digitally altered?

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms