Data Security
In one sentence
Your data belongs to you, is backed up across multiple Alibaba Cloud data centers, and can be exported with one click at any time. We are merely the custodian.
1. Cloud infrastructure
| Item | Details |
|---|---|
| Cloud provider | Alibaba Cloud (China's No. 1 cloud, proven to be the most stable) |
| Deployment region | East China cluster (Hangzhou / Shanghai dual region) |
| Operations team | Professional DBA + SRE team monitoring 7×24 |
| Availability target | 99.5% (no more than 3.6 hours of downtime per month; actual history far exceeds this) |
| Critical services | Guarded by systemd (auto-restart / failover) |
| Database | MongoDB 3-instance replica set + automatic failover (if the primary node fails, it switches to a secondary within 30 seconds) |
2. Data backup strategy
Multi-layer backups
| Layer | Frequency | Retention | Purpose |
|---|---|---|---|
| MongoDB replica-set auto-sync | Real-time | Permanent | If the primary node fails, immediately switch to a secondary, with no impact on operations |
| Half-hourly incremental backup | 30 minutes | 30 days | Point-in-time restore (contact support to roll back to any half-hour point within 30 days) |
| Daily full backup | 1 day | 90 days | Major disaster recovery (theoretical; never actually triggered) |
| Cross-region backup | 1 day | Permanent | Synced to Alibaba Cloud North China / South China data centers |
| Local export | Controlled by the customer | Permanent | The customer can export all data to their own computer with one click at any time |
Disaster-recovery drills
The Jenny Software team runs a full disaster-recovery drill every quarter:
- Simulate the entire production environment going down
- Restore from backup to a test environment
- Verify data integrity + business processes
- Actual restore time < 2 hours
3. Transmission and storage security
Transmission encryption
- End-to-end HTTPS encryption (TLS 1.2+)
- All API requests / file uploads / image access go over HTTPS
- API keys are stored salted with BCrypt and are never stored in the database as plaintext
Storage encryption
- Database password fields are BCrypt-hashed (even if the database is leaked, the original passwords cannot be read)
- Images / cloud-disk files are stored on Alibaba Cloud OSS redundant disk storage (three replicas)
- Sensitive fields (phone number / email) are masked when needed
Network protection
- Alibaba Cloud Cloud Shield WAF blocks SQL injection / XSS / DDoS
- Critical APIs use rate-limiting to prevent scraping
- Five failed logins trigger automatic lockout + CAPTCHA
4. Data ownership
Important principle
All data is 100% yours. We are merely the data custodian. At any time, the customer can:
- ✅ Export with one click — all sample / customer / document / report / image data can be exported as Excel + ZIP
- ✅ Bulk-delete their own data — can be done anytime within the software
- ✅ Cancel the account + wipe data — contact support, and it is fully cleared within 72 hours
- ✅ Never be locked in — even if you stop using Jenny Software, the data is yours and can be exported and migrated to another system
5. Compliance and certification
Domestic compliance
- ✅ ICP filing + public-security filing completed
- ✅ Cybersecurity Multi-Level Protection Scheme (MLPS 2.0) compliant
- ✅ Terms of service + privacy policy comply with the Personal Information Protection Law and the Data Security Law
Operation auditing
- Critical operations (data deletion / user role changes / large-amount document edits / data import) have a complete operation log
- The boss can check "who changed what, and when" under "Enterprise Operations → Operation Log"
- Logs are retained for 1 year
6. Company stability (a guarantee beyond data ownership)
Why this matters
The biggest risk with SaaS software is that the company folds and the customer's data is gone. On this point, Jenny Software:
- ✅ Independently operated, with no external financing / earn-out pressure — won't be pushed by investors to burn cash and then collapse
- ✅ Financially sound, with stable long-term operations
- ✅ Stable core team, with core engineering at the company for 5+ years
- ✅ Continuously growing customer base, tripling in scale from 2024 to 2026
- ✅ Code hosted on GitHub + Gitee dual backup — in extreme cases, a third party could take over the code and continue operations
7. FAQ
Q: If data is lost, can it be recovered?
A: Yes. Any half-hour point within 30 days can be restored (contact support; usually done within 1 hour).
Q: If Alibaba Cloud goes down, is my data gone?
A: No. We use Alibaba Cloud's multi-region + multi-data-center backups, so a single data center's failure has no impact. In an extreme case (all of Alibaba Cloud down), we can restore from cross-region backups.
Q: Can Jenny Software's internal staff see my customer list / prices / suppliers?
A: No. Operations staff can only see aggregate statistics (e.g., "how much storage a customer uses") and cannot see specific data. Customer privacy data is invisible to operations staff by design.
Q: Does data leave the country (to overseas servers)?
A: No. All data is stored in Alibaba Cloud's domestic cluster. Overseas customers access via CDN acceleration, with the data still kept domestically.
Q: Can you sign an NDA?
A: Yes. Major customers / key accounts can sign a formal NDA. Contact support or sales.
Q: Is deleted data really deleted?
A: Soft delete (recycle bin) + physical deletion after 30 days. Unless the customer follows the "account cancellation + data wipe" process, which deletes physically immediately.
Q: Can I have employees see only their own customers' data?
A: Yes. See Data Access Control and People & Role Management.
Q: Can I get the encryption key to decrypt data myself?
A: Not currently (keys are managed by Alibaba Cloud KMS; a customer-managed "customer master key" feature is on the roadmap).
Related articles
- Data Access Control — department / role / data permissions
- People & Role Management — the permission model
- After-Sales Service & SLA — service commitments
- Pricing — scope of service
- FAQ