As a web-based platform, Life QI is 'hosted' on computers which are located at datacentres. As the data entered into Life QI can be sensitive, its physical location must be somewhere that complies with the relevant data protection legislation and where the latest and most robust physical security measures are in place. Datacentres provide this level of security along with many other benefits such as reduced cost, better resilience and expert 24/7/365 management of equipment.
Life QI is currently available in 31 countries and in turn separate, isolated versions of Life QI exist in several data centres to allow compliance with local laws and regulations. Each version of Life QI has a totally separate database and no data is ever shared between versions. For example, in the UK, Life QI is hosted at a datacentre in London.
Life QI is primarily hosted with Amazon Web Services (AWS). AWS are widely accepted as world leaders in cloud computing and are compliant with major industry standards.
AWS is subject to numerous audits and certifications according to several global best practices and government standards. AWS has successfully completed and maintains many audits and certifications, including SOC 1 (SSAE 16 and ISAE 3402), SOC 2 – Security, SOC 3, PCI DSS Level 1, ISO 27001, as well as FedRAMP, FIPS 140-2, FISMA and DIACAP for US government agencies.
You can find full details of AWS' compliance program here
Currently, through AWS, Life QI can be deployed from 11 locations globally. It is possible to deploy Life QI to more specialised locations subject to assessments of the feasibility of maintaining security, compliance, resilience and cost effectiveness.
This allows your data to be hosted in the countries that comply with your information governance policy.
- South Korea
We take security extremely seriously, which is why we use a world leader in cloud computing AWS, to host the data for Life QI. We work with AWS to take every step to ensure the physical security of data hosted on their servers. AWS' highly secure datacentres utilise state-of-the art electronic surveillance and multi-factor access control systems.
Datacentres are staffed 24x7 by trained security guards. These protections have been validated by an independent auditor and have been certified as being compliant with ISO 27001 best practices.