Security 1st Title uses Alacriti, Inc. to process our online payment transactions.

Alacriti, Inc. uses the following security measures to ensure your security:

ALACRITI, INC. PERIMETER SECURITY
Alacriti, Inc. has deployed Defense in Depth Architecture using network firewall, web application firewall, Managed DDoS protection, and a content delivery network with the goal of providing high availability and performance by distributing the service spatially relative to end users.

Alacriti, Inc.'s infrastructure is launched in compliance with the AWS Well Architected Framework. They have adopted NIST 800-53 Risk Management Framework controls that support the development of secure and resilient systems, have Architecture which incorporates best practices from various standards and certifications, and have strict network segmentation and isolation of environments and services in place.

ALACRITI, INC. DATA SECURITY
Alacriti, Inc. employs separation of environments and segregation of duties and have strict role-based access control (RBAC) on a documented, authorized, need-to-use basis. They use key management services to limit access to data based on the job functionality.

Stored data is protected by encryption at rest and sensitive data by application level encryption.

Alacriti, Inc. uses data replication for data resiliency, snapshotting for data durability and backup/restore testing for data reliability and availability.

ABOUT SSL CERTIFICATES TRANSPORT LAYER SECURITY (TLS)
Alacriti, Inc. is a PCI DSS v3.2.1 attested company, which means they have implemented applicable industry standard security controls governed by the PCI security council that helps protect all customers’ card data in a highly secure environment. The security controls are audited by Qualified Security Assessors (QSA) that have been qualified by the PCI Security Standards Council to validate adherence to PCI DSS.

To read Alacriti, Inc.'s full security policy, visit their website at https://www.alacriti.com/security/