Measures for ensuring events logging. All systems generate logs (from the VPN access to database queries, end-to-end) and alert in case of logging capabilities failure. All system logs are recorded and stored online for 90 days and in cold storage for 1 year. Running native on AWS Cloud, Cloudinary uses a set of Cloud-native tools that monitor activity and mitigate risks and configuration mistakes. Audit logs are kept in highly privileged, dedicated, S3 buckets and log file access is granted according to the principle of 'need to have' and is fully monitored. Cloudinary employs 24x7 system monitoring and ops personnel on call. When a service issue is identified, Cloudinary updates the system status at ▇▇▇▇://▇▇▇▇▇▇.▇▇▇▇▇▇▇▇▇▇.▇▇▇. Cloudinary measures multiple metrics to scale and accommodate changes in incoming load. The system has an automatic pre-emptive scale up events feature, based on known usage patterns which are unique to each data center. Cloudinary employs intrusion detection systems and uses commercial and customized tools to collect and examine Cloudinary’s application and system logs, to detect anomalies.
Appears in 2 contracts
Sources: Data Processing Agreement, Data Processing Addendum