Termination of Employment
When an employee leaves, their access to DrugBank systems is revoked immediately through automated de-provisioning, which centrally removes credentials and SSH keys across all servers and databases.
Identity Validation
All requests for access to production systems require approval from authorized personnel and are provisioned only on the basis of role and necessity. Access is tied to SSO (such as Google or GitHub) and protected with two-factor authentication.
Encrypting Data at Rest
All databases that store customer data are encrypted at rest. Sensitive fields such as passwords are hashed and salted using modern encryption.
Inventory of Infrastructure Assets
DrugBank maintains an up-to-date inventory of infrastructure assets hosted in Cloud Platforms. This includes all environments (production, staging, QA) and related services, tracked and managed through Infrastructure-as-Code tools (like SaltStack and Terraform).
Data Backups
Backups are performed daily for all critical databases and are encrypted, password-protected, and stored privately off-site. Every backup is automatically tested to ensure successful recovery.
Choice & Consent
DrugBank’s privacy practices align with GDPR and CCPA. Consent for data collection and processing is managed transparently, and customer requests for access, correction, or deletion are supported through our compliance workflows.
Physical Security
Our infrastructure is hosted on Google Cloud Platform, which maintains world-class physical security controls across its data centers.
Access Monitoring
All access to production systems is logged centrally through trusted monitoring software. We perform regular reviews of access rights and logs to ensure access is within the scope of an employee’s duties. Alerts are configured to flag anomalies in usage.
Encryption in Transit
All customer data in transit is encrypted using TLS. We require TLS 1.2 or higher, with TLS 1.3 preferred where supported. Forward secrecy cipher suites are enabled to strengthen confidentiality.
Encryption at Rest
All customer data stored in DrugBank systems is encrypted at rest using AES-256 encryption through cloud native mechanisms. Encryption keys are managed and stored separately from the data.
Backups Enabled
DrugBank ensures that daily encrypted backups are retained and available for recovery. Our backup system allows for fast recovery of customer data and is verified nightly through automated restore tests.