11655
This answers common questions about SAGE Connect.
Q: PPAI introduced the industry standards initiative what is the difference between that and SAGE Connect?
A: PPAI industry standards are intended to industry standards accessible to everyone and are based on the underlying technology of SAGE Connect.
Q: Is SAGE Connect secure?
A: SAGE Connect uses the latest technology to help ensure that private information remains as safe as possible. Connections to SAGE servers are via an SSL-encrypted connection using industry standard encryption. All sensitive information is stored on our secure servers, and we protect the confidentiality of this information pursuant to our corporate privacy policy.
Q: Where can I find SAGE's Privacy Policy
A: https://www.sageworld.com/legal/
Q: How can I be assured that SAGE will be able to handle the load of SAGE Connect?
A: We constantly monitor our network's performance and we can proactively make any network changes that might be required to address performance. Our network currently supports tens of thousands of customer sites in addition to the rest of our services and we have plenty of room for expansion. We maintain multiple connections to the public Internet for redundancy and bandwidth management. We have backup power for our data centers provided by both battery and generator systems.
Q: Where are SAGE sites hosted? Is the facility and data secure, and what data breach notification procedures do you have in place?
A: All of our servers are located in SAGE facilities within the United States and we own all of our own servers and network infrastructure equipment. We use a variety of industry-standard security measures to protect all of servers and the data stored on them. These measures include encryption of certain data, redundant firewalls, multiple layers of virus and malware protection, and restricted access to our network operations centers, servers and data. Physical access to our network operations centers is limited to select staff through a key-card system, with video surveillance and a state-of-the-art security system. Our network administrators are responsible for all monitoring, identification, and notification in the event of potential or actual data breach. Procedures vary depending on the scope and type of event, and we follow PCI compliance guidelines and applicable laws.
Q: Have SAGE's servers undergone independent vulnerability testing?
A: Yes, our network is tested by independent third party organizations on a routine basis in addition to our own routine internal testing.
Q: How often is the service down? Do you offer a 100% up-time guarantee like some providers? I'm concerned that SAGE is a single point of failure for the PPAI industry standard data exchange.
A: Some companies tout "guaranteed server up-time" to their customers. As a practical matter, guaranteed up-time is a meaningless statement. All companies that are interested in customer satisfaction should intend to have their servers up 100% of the time. However, maintenance is of course sometimes necessary and networks do sometimes experience problems. If a company is "guaranteeing" 100% up-time, they will of course not meet that guarantee.
At SAGE, we have an advanced redundant network to minimize any downtime. We have multiple, redundant connections to the public Internet. We also use battery and diesel generator backup systems to remain online even in the event of a significant power failure. We are constantly expanding our network infrastructure to provide additional fault tolerance and redundancy to further minimize any downtime. It is important to note that even if particular servers are occasionally not available for routine maintenance, that does not necessarily mean that your site will not be working normally.
In regards to SAGE Connect specifically while having a decentralized connection to individual endpoints might seem attractive on the service, remember that this only creates -multiple- single points of failure it does not provide redundancy.
Q: I'm interested in detailed information on data retention, protocols used, etc., where can I find this information.
A: Documentation for implementation of SAGE Connect may be found on www.sagemember.com under Developer APIs. We can provide a detailed security worksheet on request, please email support@sageworld.com.
To enable credit card viewing on your site, you may click here.
| Type: | Info | Publish Date: | 2/9/2022 12:12:31 PM |
| Applies To: | Last Updated: | 11/21/2025 5:25:56 PM | |
| Platform: | All | Expiration Date: |