top of page
Security Protocol
Alts Fund Link is hosted on WIX. Our website security certificates include PCI DSS Level 1, Soc 2 Type 2 and several ISOs, and we’re compliant with GDPR, CCPA, LGPD. When collaborating securely is one of the most important parts of your job, you need security and compliance you can trust.
Wix.com Ltd is audited annually and certified as ISO 27001 compliant. The ISO 27001 certification outlines industry best practices for managing security risks.
Wix.com Ltd has been audited and certified as ISO 27018 compliant. The ISO 27018 certification outlines industry best practices for handling personally Identifiable Information (PII) in a public cloud-computing environment.
The GDPR is the European Union's framework for privacy laws, which came into force on May 25th, 2018. The GDPR protects individuals' rights when it comes to their personal data and what companies can do with it. We are continuously working with a team of experts and have implemented the required adjustments to our products, services, and documentation, to ensure compliance with the GDPR. This empowers Wix customers to get more control over their personal data and gain the tools necessary to protect the information of visitors to Wix sites.
The California Consumer Privacy Act (CCPA) is a state-wide data privacy law that regulates how businesses all over the world are allowed to handle the personal information (PI) of California residents. The state statute intended to enhance privacy rights and consumer protection by providing them with special rights, which includes (but are not limited to) the "right to access", "right to deletion" and the "right to opt-out from a sale of personal information".
Multi-Layered Security - Providing the Best For You At Wix.com Ltd, we use multi-layered controls to help protect our infrastructure, constantly monitoring and improving our applications, systems, and processes to meet the growing demands and challenges of security.
Application-Level Security of Threat Modeling Every new feature released to Wix.com Ltd web creation platform undergoes a security review under great scrutiny, using STRIDE as our threat model method. As part of our software development methodology, we test each feature to make sure it upholds strict security standards and is not vulnerable to abuse. o Penetration Tests We employ our own dedicated security research team to test the security posture of our platform on a regular basis. External PT, by external security experts, is conducted on a daily basis. All PT findings are reported to our R&D teams and are mitigated promptly. o OWASP Our development team follows OWASP secure coding practices. o Encryption Wix.com Ltd uses well proven encryption algorithms and protocols to secure data in transit or data at rest.
High-End Physical Security Our production environment complies with the highest industry standards for physical, environmental & hosting controls.
Wix is hosted by cloud based DC providers: AWS and Google Cloud Platform. Equinix provides all physical colocation services. These infrastructure providers maintain industry-standard security certifications, including: ● ISO 27001 ● ISO 27017 ● ISO 27018 ● SOC 1 ● SOC 2 SOC 3 ● PCI DSS Level 1
Network Security - Extra Layers of Protection o TLS 1.2 All new sites created on Wix.com Ltd have HTTPS automatically enabled as part of the basic services Wix.com Ltd provides. All critical interfaces and functions, i.e. user authentication, payment transactions (PCI data) and PII related processes are only accessible using the latest version of TLS. Wix.com Ltd officially supports TLS with 1.2 as a minimum version. o Monitoring Wix.com Ltd's SOC 24/7/365 monitoring program is focused on information gathered from internal network traffic, employee actions on systems and outside knowledge of vulnerabilities.
Analysis is performed using a combination of open-source and commercial tools for traffic capture and parsing. Automated network analysis helps determine when an unknown threat may exist and escalates to Wix.com Ltd security staff, and network analysis is supplemented by automated analysis of system logs. o Vulnerability Scans Due to the dynamic nature of Wix.com Ltd external surface, all of Wix.com Ltd Cloud and public interfaces are automatically scanned twice a day for vulnerabilities and misconfigurations.
For Broker Dealer and Investment Advisor home office due diligence use only.
All rights reserved. This material should not be redistributed or replicated in any form without the prior consent of Alts Fund LINK, LLC. Alts Fund LINK, LLC is not a broker dealer nor a Registered Investment Advisor. Information on this website does not constitute investment, tax or legal advice. Data is for informational purposes only, not to be construed as recommendation or advice.
The Alternative Asset
FUNDLINK
Diligence Intelligence
2024 Alts Fund LINK, LLC
bottom of page