Data Encryption & Security
Enterprise-grade encryption for your NetSuite customer portal. TLS 1.2+ in transit, AES-256 at rest, and secure key management for all portal data.
SuitePortal uses industry-standard encryption to protect your data both in transit and at rest.
Data in Transit
All data moving between systems is encrypted.
What's Protected
| Connection | Protection |
|---|---|
| Browser to SuitePortal | TLS 1.2+ (HTTPS) |
| SuitePortal to NetSuite | TLS 1.2+ |
| API requests | TLS 1.2+ required |
What This Means
When your users access the portal or when data syncs from NetSuite, it's encrypted the entire way. No one can intercept and read it.
Data at Rest
All stored data is encrypted.
Storage Encryption
| Storage | Encryption |
|---|---|
| Database | AES-256 |
| File storage | Server-side encryption |
| Backups | Encrypted |
What This Means
Even if someone gained physical access to our servers, they couldn't read your data without the encryption keys.
Key Management
How we manage encryption keys securely.
Key Security
Encryption keys are:
- Stored in a secure key management service
- Automatically rotated regularly
- Never stored with the data they protect
- Access-logged for security auditing
What You Need to Do
Nothing! Encryption is automatic.
Automatic Protection
All connections to SuitePortal require HTTPS — there's no way to disable it.
Frequently Asked Questions
Common questions about encryption.
Is my data encrypted in NetSuite too?
SuitePortal encrypts data we store. NetSuite has its own security measures. The connection between them is encrypted.
What about payment information?
Payment data is handled by Stripe, which is PCI DSS compliant. SuitePortal never stores credit card numbers.
Can I bring my own encryption keys?
Enterprise customers can discuss custom key management options. Contact support for details.
Related
- Data Isolation — How data is separated
- Access Controls — Who can access what
Multi-tenant Data Isolation
How SuitePortal isolates customer data in a multi-tenant environment. Row-level security, organization-scoped access, and data separation for your NetSuite portal.
Access Controls & Permissions
Role-based access control for your NetSuite customer portal. User authentication, API security, and permission management to control who sees what data.