In the course of serving our customers there
is periodically the need for Aspacia to review the
contents of our customers data. At Aspacia, we
understand the need for absolute security and privacy when it
comes to our customers proprietary information.
Therefore, we have adopted a series of industry leading
policies and procedures designed to safeguard and protect the
security of our customers sensitive information. Please read the
following statement to learn more about our customer data
Acquisition of Customer Data
Aspacia will not accept the unauthorized
submission of customer data under any circumstances. Any
customer data received by Aspacia without prior authorization
will be immediately destroyed to DOD standards and Aspacia
will send a notice to the transmitting party informing them of
our actions. Aspacia assumes no liability for harms
resulting from the unauthorized transmission of data to
Aspacia will only accept the submission of
customer data once both the customer and Aspacia have executed
a Data Services Agreement fully detailing the means of
transmission, scope of services and retention policies and
procedures. Once the Agreement has been executed,
Aspacia will make arrangements with the customer for the
secure transmission of the data including but not limited to
PGP encrypted email identified with appropriate Digital
Certificates, bonded courier carrying encrypted magnetic or
optical media, secure FTP, VPN or encrypted remote access file
transfer. Aspacia recommends and supports all means of
data encryption up to and including 160 bit DES, NEW DES,
Blowfish, CAST-128, RC4, IDEA and Safer-SK 128.
Use of Customer Data
Aspacia uses customer data for four primary purposes:
Aspacia will disclose the contents of customer data, without
notice, only if required to do so by law or in the good faith
belief that such action is necessary to: (a) conform to the
edicts of the law or comply with legal process served on
Aspacia; (b) protect and defend the rights or
property of Aspacia, and, (c) act in urgent
circumstances to protect the personal safety of customers of
Aspacia or the public.
- To correct errors or anomalies in data
- To repair corrupt data structures.
- To help us create and deliver customer
- To convert data to a different format.
Control of Customer Data
Once transmitted, or otherwise given to us customer data,
Aspacia will not share that data with third parties
without the customers express written permission, other than for the limited exceptions
already listed. It will only be used for the purposes stated
above. Aspacia may send out periodic e-mails informing its
technical service issues related to a product or service they
requested as a part of the Agreement.
Security of Customer Data
Aspacia strictly protects the security of our customers data and honors
their choices for its intended use. We
carefully protect their data from loss, misuse, unauthorized
access or disclosure, alteration, or destruction.
Customer data is never shared outside the company
without express written permission, except under conditions explained
above. Inside the company, data is encrypted and stored in
password-controlled servers with limited access.
Customer data is only decrypted by authorized Aspacia
personnel during the performance of the mutually agreed upon
service. Should the customer and Aspacia agree to have
Aspacia retain the data beyond the time required to perform
the services, Aspacia will transfer the encrypted data to
optical media and place it in a physically secure location.
Customers also have a significant role in protecting their information. No one can
access our customers data without knowing its password, so do not share these with
Changes to this Statement
Aspacia will occasionally update this customer data security statement.
For material changes to this Statement, Aspacia will notify
you by placing prominent notice on the Web site.
Aspacia welcomes your comments regarding this Statement, please contact us by
or postal mail.