All data is collected by the Movere Console. All resulting output files are encrypted in memory using PGP. All private/public keys are unique to each customer. Before uploading to the cloud, output files are also zipped for further size reduction. When the user authenticates, a token is downloaded and added to each zip file as a header. Only then can the file be uploaded via secure channel (HTTPS) to the Azure cloud for processing.
Upon reaching the cloud each output file is handled by a FileTransfer API. Each output file gets decompressed, decrypted then pushed into the database belonging to the customer performing the scan and upload. No two customers share the same database. For the database, the data is also extracted onto a secondary database for reporting, then into Qlik which stores it in memory for the user to access to via the website.
All data is stored in the Movere cloud. Data is retained for 15 days post-expiration of a subscription, after which time it is deleted; this includes all backup data.