+ Post New Thread
Page 3 of 7 FirstFirst 1234567 LastLast
Results 31 to 45 of 101
Cloud Services Thread, Cloud, SaaS and SoSaas - Same old Software, as a Service in Technical; Originally Posted by matt40k They shouldn't really tell you for security, + + + + + + + So I ...
  1. #31

    Join Date
    Dec 2013
    Location
    Bromley
    Posts
    60
    Thank Post
    15
    Thanked 7 Times in 6 Posts
    Rep Power
    3
    Quote Originally Posted by matt40k View Post
    They shouldn't really tell you for security,

    + + + + + + +

    So I would guess they have a private cloud ....
    Thank matt40k

  2. #32

    GREED's Avatar
    Join Date
    Mar 2008
    Location
    Portsmouth
    Posts
    3,033
    Thank Post
    374
    Thanked 367 Times in 299 Posts
    Blog Entries
    8
    Rep Power
    176
    Quote Originally Posted by matt40k View Post
    They shouldn't really tell you for security, but an educated guess...

    They list two cloud providers on their site:
    Bromcom Computers Plc - Partners

    Colocation Cloud Hosting & UK Datacentre Provider | Pulsant
    and
    Managed Hosting | Dedicated Servers & Cloud Hosting | UKFast

    So I would guess they have a private cloud using something like vmware.
    I would suggest a customer MUST know where and how their data is being stored... no?

  3. #33

    GREED's Avatar
    Join Date
    Mar 2008
    Location
    Portsmouth
    Posts
    3,033
    Thank Post
    374
    Thanked 367 Times in 299 Posts
    Blog Entries
    8
    Rep Power
    176
    Quote Originally Posted by matt40k View Post
    Ahh, you're referring to the naughty @PhilNeal who's using his salesman skills to distract us whilst the Capita developers finish of SIMS 8 so we don't badge Capita with rainy clouds. Didn't your mother warning you about following other people?
    Not really as we are talking about Cloud MIS and how this interaction happens with API.

    Stop looking for naughtiness... I can see right through you!

  4. #34

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,406
    Thank Post
    368
    Thanked 639 Times in 521 Posts
    Rep Power
    158
    Quote Originally Posted by GREED View Post
    I would suggest a customer MUST know where and how their data is being stored... no?
    Agree to a certain point. Normally you know where the primary site is but you never know where the backup site is, you just a get legal document confirming that it is in the UK and it is signed off by an independent company or you'd have to sign a NDA all depending on the level of security we're talking.

    I can tell you that Azure has a DC in Ireland, not sure I can tell you the exact location. Could be wrong. I just wouldn't think you'd want to be able to find a data center with 22,000 schools MIS systems on Google Maps.

    Personally I'd like to know it's in England and no backups, regards of if they are encrypted or not*, leave England. Not too fussed about exact locations so long as they have a primary and secondary and they're not next door to each other (ideally something like Manchester and London). I'm sure Ireland would be fine, its just, well if its within the same country I'd assume it would be easier to deal with issues that might occur. I just assume it might get a bit sticky trying to comply with two sets of government legislation, ones bad enough.

    All boils down to trust. End of the day even if you get a guided tour of a data center in England, doesn't mean the data isn't forwarding to China or USA.


    * I'm just saying this as we know the NSA can break most encryption and surely having a database full of all the UK children with behaviour reports and critical life events kinda makes for a good platform for making predictions about the future adult population of the UK. Paranoid I know.

  5. #35

    Join Date
    Dec 2013
    Location
    Bromley
    Posts
    60
    Thank Post
    15
    Thanked 7 Times in 6 Posts
    Rep Power
    3
    Quote Originally Posted by GREED View Post
    I would suggest a customer MUST know where and how their data is being stored... no?
    Usually schools question whether data is in within UK, EU or elsewhere. Yes, Bromcom's data is within UK.

    LA's in tenders even ask to inspect the data-centres. Yes, they are welcome to inspect.
    Last edited by Bromcom-PR; 19th February 2014 at 01:32 PM. Reason: typo

  6. #36

    webman's Avatar
    Join Date
    Nov 2005
    Location
    North East England
    Posts
    8,406
    Thank Post
    639
    Thanked 961 Times in 661 Posts
    Blog Entries
    2
    Rep Power
    324
    ISO 27001 certification would be useful for you to have, if not already.

  7. #37

    GREED's Avatar
    Join Date
    Mar 2008
    Location
    Portsmouth
    Posts
    3,033
    Thank Post
    374
    Thanked 367 Times in 299 Posts
    Blog Entries
    8
    Rep Power
    176
    I agree @matt40k @Bromcom-PR In the UK is acceptable under DPA, although I would want to know where backups are too, not just a random signed agreement. A customer should know themselves, it is their responsibility too not just suppliers in telling them. Potentially, yes a school should be able to visit the site.

  8. #38

    vikpaw's Avatar
    Join Date
    Sep 2006
    Location
    Saudi Arabia
    Posts
    5,851
    Thank Post
    672
    Thanked 1,383 Times in 1,145 Posts
    Rep Power
    350
    Quote Originally Posted by GREED View Post
    I agree @matt40k @Bromcom-PR In the UK is acceptable under DPA, although I would want to know where backups are too, not just a random signed agreement. A customer should know themselves, it is their responsibility too not just suppliers in telling them. Potentially, yes a school should be able to visit the site.
    But the buyer can sort that with the vendor, it doesn't need to be revealed here for the world.

  9. #39

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,406
    Thank Post
    368
    Thanked 639 Times in 521 Posts
    Rep Power
    158
    Other one is data erasing. How would you ensure that once your end the contract that they securely destroy the data.

    Thing is, if they give you a legal document saying the data never leaves the UK and when you leave they securely destroy the data along with any backups - they're only ever going to get it wrong once, the fines and penalties are ridiculous. Pretty sure if it's an individuals fault they can be liable for life imprisonment. Personally I think I can trust a company when the MD signs his life away - literally.

  10. #40

    GREED's Avatar
    Join Date
    Mar 2008
    Location
    Portsmouth
    Posts
    3,033
    Thank Post
    374
    Thanked 367 Times in 299 Posts
    Blog Entries
    8
    Rep Power
    176
    Quote Originally Posted by vikpaw View Post
    But the buyer can sort that with the vendor, it doesn't need to be revealed here for the world.
    Why does it need to be secretive? If all customers know, the data is out there. I'm saying that in the UK is fine publicly, not sure where the confusion is? I'm saying that the buyer individually should know.

  11. #41

    GREED's Avatar
    Join Date
    Mar 2008
    Location
    Portsmouth
    Posts
    3,033
    Thank Post
    374
    Thanked 367 Times in 299 Posts
    Blog Entries
    8
    Rep Power
    176
    Quote Originally Posted by matt40k View Post
    Personally I think I can trust a company when the MD signs his life away - literally.
    So bank bosses that were fiddling numbers into the billions? That means nothing at all! having MD sign anything. All that means is who you are blame after the event, not safeguard in the first place!

    I'm not making trouble if you read my posts carefully, I promise you. I'm just saying that information should be available if requested, there needs to get away from this secretive hush hush side, and more from the customer side they should be actively aware!
    Last edited by GREED; 19th February 2014 at 02:20 PM.

  12. #42

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,406
    Thank Post
    368
    Thanked 639 Times in 521 Posts
    Rep Power
    158
    Fair point but like I said. Having something on your site saying UK only DC and letting people visit the DC and signing a document confirming this - it still comes down to trust. They could move the servers the day after, or forward your data outside of Europe. You of course build the trust by visiting the DC and checking out what they telling you.

    One day @GREED we'll get to a point where we don't have any of these dark spots where information is hidden behind a NDA or the maze that is SupportNet

  13. Thanks to matt40k from:

    GREED (19th February 2014)

  14. #43

    GREED's Avatar
    Join Date
    Mar 2008
    Location
    Portsmouth
    Posts
    3,033
    Thank Post
    374
    Thanked 367 Times in 299 Posts
    Blog Entries
    8
    Rep Power
    176
    Quote Originally Posted by matt40k View Post
    Fair point but like I said. Having something on your site saying UK only DC and letting people visit the DC and signing a document confirming this - it still comes down to trust. They could move the servers the day after, or forward your data outside of Europe. You of course build the trust by visiting the DC and checking out what they telling you.

    One day @GREED we'll get to a point where we don't have any of these dark spots where information is hidden behind a NDA or the maze that is SupportNet
    Yes we basically agree

    If I were being picky I would suggest that the more expensive or difficult it is to make such changes as you suggest the greater the trust you build.

  15. #44

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,406
    Thank Post
    368
    Thanked 639 Times in 521 Posts
    Rep Power
    158
    Quote Originally Posted by GREED View Post
    I would suggest that the more expensive or difficult it is to make such changes as you suggest the greater the trust you build.
    If by greater trust, you mean increase the chances that I would hunt you down and break your legs if you should break that trust

  16. #45

    GREED's Avatar
    Join Date
    Mar 2008
    Location
    Portsmouth
    Posts
    3,033
    Thank Post
    374
    Thanked 367 Times in 299 Posts
    Blog Entries
    8
    Rep Power
    176
    Not just that, but fundamentally the more difficult or expensive it would be to say change the location of the data center overnight, the less likely it is a bona fide company would do that. ..

    Checks legs

SHARE:
+ Post New Thread
Page 3 of 7 FirstFirst 1234567 LastLast

Similar Threads

  1. Working with old software and SIMS .net & RepGen
    By Edu-IT in forum MIS Systems
    Replies: 7
    Last Post: 11th January 2010, 09:06 AM
  2. Setting up a new DC and demoting the old un to BDC
    By speckytecky in forum Windows
    Replies: 6
    Last Post: 19th February 2008, 11:35 AM
  3. Old software, free to good home!
    By maniac in forum General Chat
    Replies: 3
    Last Post: 29th December 2007, 11:40 PM
  4. Using old machine as Print Server
    By SimpleSi in forum *nix
    Replies: 9
    Last Post: 22nd September 2006, 04:51 PM
  5. Replies: 4
    Last Post: 10th April 2006, 10:35 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •