Users in 3Shape Unite Cloud are managed and authenticated through 3Shape Account, ensuring each user has a unique ID. This guarantees that dental professionals have access only to their own cases. Role-based access control allows different users to have access to specific resources based on their roles.

To prevent unauthorized access to patient information on unattended workstations or lost mobile devices, the 3Shape Unite Cloud website and iOS application automatically log off after 15 minutes of inactivity. Authorization information and sessions also expire after 15 minutes.

Data sent via 3Shape Unite Cloud is encrypted. This ensures that even if the data is intercepted during transmission to 3Shape Unite Cloud servers, it remains unreadable to unauthorized parties.

 3Shape Unite Cloud encryption type: TLS 1.3 AES_256 encryption.

3Shape Unite Cloud represents the data stored in 3Shape Cloud Storage, which uses a special storage method where the content itself helps determine where it is stored. This means if any part of the content changes or gets corrupted, the system will not be able to find it because the storage address will no longer match. This helps keep customer's content safe and unchanged, because any alteration is easily detectable.

3Shape Unite Cloud includes comprehensive logging mechanisms that record every instance of access to patient data. Logs are generated in situations such as when a service technician performs maintenance activities involving personal data, or when a customer accesses their own personal health information. These access logs are regularly audited to ensure that all access to patient data is appropriate and authorized, enhancing the security and privacy of your information.

3Shape Unite Cloud 3Shape employs advanced intrusion detection and prevention systems. Multi-layered access controls are utilized across all levels of the infrastructure to prevent unauthorized access. Leading intrusion detection technology is used to ensure continuous protection for storing sensitive information.

3Shape Unite Cloud is protected by application-level firewalls that filter out unauthorized requests. Access to services, databases, and dependencies requires specific credentials, ensuring stringent security controls.

Security is integral to the development of 3Shape Unite Cloud. Secure coding is prioritized from the start, with extra time dedicated to security improvements. Every code update is carefully reviewed by another developer to ensure it meets high security standards before testing and release. This thorough review process helps keep the software secure and reliable.

3Shape has adopted the ideology and techniques of CI/CD (continuous integration and continuous delivery). Tasks are prioritized and worked on daily, with results constantly pushed to a pre-production environment. Once several features or bug fixes are present in pre-production, they are released. Releases typically occur once a week on average. However, urgent updates may be released out of schedule when necessary. The latest updates of used technologies, both for infrastructure (servers and cloud) and software and framework, are always maintained.

All data storage in 3Shape Unite Cloud is continuously backed up using either locally-redundant or geo-redundant methods. This ensures protection against internal drive malfunctions and, with geo-redundancy, safeguards against regional service disruptions. Databases are backed up daily, allowing for recovery in the event of data loss. These backups are retained for 7 days to provide a safeguard against data corruption.

Network segmentation in 3Shape Unite Cloud is achieved through regional separation of services. Each region operates within its own network, providing a layer of isolation. In the event of a security breach within one region, the impact is contained to that specific region.

3Shape Unite Cloud prevents data loss and leakage through continuous monitoring and detection systems across all personal data storage. Robust access controls and data integrity systems detect any loss or unauthorized access. Additionally, all personal information is encrypted at rest, ensuring that any leaked data remains unreadable and secure. Comprehensive audit controls and logging further enhance security measures.