Security: It’s Our Way of Life
At Relativity, security is integral to who we are and ingrained in how we operate. From our coding practices to our code of conduct, you can have peace of mind that your data is safe with us.
Cloud Security in RelativityOne
We invest relentlessly in processes and technology that best protect your data.
We adhere to a secure software development life cycle, and all our developers are required to take courses in security awareness and secure coding.
Code is reviewed with security as a top priority before it’s checked into our source repositories, and we perform recurring and exhaustive penetration tests.
High standards of cryptography apply to all data in RelativityOne—within data centers and between RelativityOne operators, for data at rest as well as in transit, and at every endpoint.
Innovation and Security, Together
Our security team collaborates with our engineers to ensure security is central to feature design, and we’re vigilant in patching emerging vulnerabilities in any third-party infrastructure components.
We back up SQL data every 10 minutes and files daily, and we test our backups monthly. The infrastructure supporting RelativityOne operations is backed up automatically.
Our security team continually monitors each RelativityOne instance for suspicious events with help from more than 60 specialized indicators, such as log-on events, creation of new users, and alerts from Azure anti-malware.
Your Data in Its Own Space
RelativityOne is yours and only yours, with data residing on dedicated instances on isolated network segments with credentials unique to each.
Access on Your Terms
A customer lockbox prevents administrators (our teams included) from seeing your data unless you say so. RelativityOne also provides discrete user permissions so you can customize varying levels of security for users and system administrators.
Layers of Authentication
RelativityOne supports OpenID Connect and SAML2 protocols, two-factor authentication, and single sign-on.
Culture of Security
Rest assured: We’re committed to making our everyday operations as secure as possible.
Secure Hiring and Training
All new employees pass background checks prior to starting, and we require role-based security training for every member of the team. Those supporting RelativityOne get a double dose of training, with an additional security recertification.
We have a stringent physical security policy that’s regularly reviewed and approved by a RelativityOne information security committee. All doorways require badged entry, and access to the office for RelativityOne operations is limited to the team supporting RelativityOne.
We’ve built a robust protocol for all RelativityOne operations, including:
- Regular rotation of certificates, keys, and passwords
- Multi-factor authentication across all company systems
- Privileged access assigned on a need-to-know basis with the rationale recorded for monthly review
- Segregated environments for design, implementation, testing, and hosting
What else can RelativityOne do for you?
Resources You Might Like:
Relativity Trust: Understanding Security in RelativityOne
An introduction to the investments we make to protect e-discovery data.
5 Tactics to Improve Your Security This Year
There is never a bad time to get ahead of your security strategy, but now is the best time.
Weekly scores provide transparency into the health of RelativityOne, including response times, infrastructure performance, recoverability and integrity, and uptime.