We use multiple, redundant, geographically-distributed servers.
Our servers are located in 5 locations: Chicago, Virginia, and Texas for a total of 30 servers in the United States and 10 servers in Canada- Montreal, Toronto, Vancouver.
We use RAID 10 for all.
We host with Rackspace, the leading enterprise hosting company. Other leading SaaS companies such as Yammer use Rackspace.
- Information about the locations: http://www.rackspace.com/whyrackspace/network/datacenters.php
- Information about the security: http://broadcast.rackspace.com/downloads/pdfs/RackspaceSecurityApproach.pdf
- Every data center's HVAC (Heating Ventilation Air Conditioning) system is N+1 redundant. This ensures that a duplicate system immediately comes online should there be an HVAC system failure.
- Every 90 seconds, all the air in our data centers are circulated and filtered to remove dust and contaminants.
- Our advanced fire suppression systems are designed to stop fires from spreading in the unlikely event one should occur.
- Should a total utility power outage ever occur, all of our data centers' power systems are designed to run uninterrupted, with every server receiving conditioned UPS (Uninterruptible Power Supply) power.
- Our UPS power subsystem is N+1 redundant, with instantaneous failover if the primary UPS fails.
- If an extended utility power outage occurs, our routinely tested, on-site diesel generators can run indefinitely.
Core Routing Equipment
- Only fully redundant, enterprise-class routing equipment is used in Rackspace data centers.
- Fiber carriers enter our data centers at disparate points to guard against service failure.
- 100% generator backup
- Generator capacity designed to multiple 1 to 2 MgWATT Generators
- Minimum 24-hour run time fuel capacity
- Two-hour response for fuel delivery
- UPS backup power
- Under-floor cooling provided by computer-room grade equipment
- Cooling not less than 300 BTU/h per square foot with an N+1 redundancy
- Temperature is maintained at 72 degrees F dry bulb at ASHRAE 1%
- Dry-pipe pre-action sprinkler rated for telecommunication equipment/computer room.
Security and Server Hardening:
- We use an OS-level firewall
- Login is only via ssh / secure keys
- Clients can use our direct Secure FTP (SFTP) access for delivering student information (eliminates security issues with email and web). Find more information about Regroup's Database Integration
- Use of captcha on signup page to ensure no junk users.
Secure data transfer is ensured by our 256-bit encryption, https, SSH FTP, and only allowing database logins via secure keys.
We use the TLS 1.0 protocol. This maintains the TLS connection with products that use it, which can include Lotus Notes and O365, to keep emails encrypted.
We use multi-factor authentication. This includes a knowledge factor (password) and an inherence factor (session cookies). For servers, we also use a possession factor (secure key).
Please also see the topic on Regroup's Service Level Agreement here.