Avoka Transact is typically hosted in a dedicated environment in the AWS Cloud. Avoka provides secure, private instances of Transact in the cloud for each customer, offering security, compliance, and flexibility advantages over a multi-tenant architecture. AWS is best in class for secure, high performance, and high availability services. Using Avoka Transact, customers benefit from the vast economies of scale and access to advanced configurations to address encryption, control, and multiple levels of fault tolerance.
Avoka® has created flexible systems to meet demanding security, resiliency, locality and performance requirements. Hosting in the AWS Cloud creates a secure and scalable private environment with private subnets and IP ranges.
End users are linked from the customer web servers to Avoka Transact® in the cloud, conducting the transaction with the end users, in communication with the customer infrastructure. Transient data is encrypted and stored in AWS RDS and S3 services. Master and Standby configurations, and distribution across physical Availability Zones, creates scalable and highly reliable options.
Avoka is one of the first AWS Partner Network (APN) members to achieve AWS Financial Services Competency status. Achieving the AWS Financial Services Competency differentiates Avoka as an APN member that has demonstrated deep industry expertise and proven customer success. To receive the designation, APN Partners must possess technical proficiency in the AWS platform and undergo an assessment of the security, performance, and reliability of their solutions.
AWS features hundreds of tools to satisfy unique security requirements for encryption, network, accessibility and configuration management.
Data is encrypted with a customer-provided, unique data key using the AWS Key Management Service (KMS). The AWS KMS enables customers to easily create and control the encryption keys used for their data. AWS KMS is integrated with AWS CloudTrail, providing customers with logs of all key usage.
Avoka Transact supports companies required to meet PCI and HIPAA compliance. AWS is a PCI DSS Compliant Service Provider. While AWS does not transmit or store any cardholder data, companies can create their own card data environments using AWS products.
Similarly, companies subject to HIPAA compliance can utilize the security of AWS to process and store Protected Health Information (PHI). The AWS KMA provides companies with flexibility in determining how to satisfy PHI encryption requirements. The AWS platform holds certifications for ISO 27001, FedRAMP, SOC1/SSAE 16/ISAE 3402, SOC2, and SOC3, PCI DSS Level 1, and FISMA.