Changes

It is our top priority to make the CatalogIt system secure and trusted. Our infrastructure runs in a VPN (virtual private network) behind a firewall fronted by load balancers that restrict traffic to a single port only. CatalogIt infrastructure runs on AWS (Amazon Web Services) and takes advantage of their monitoring tools (CloudWatch) to notify us of issues and keep tabs of memory, load, disc usage, etc. Traffic to our database servers, search engine, and worker processes can only originate from within the VPN (i.e. our database servers cannot be accessed outside the VPN -- e.g. from the public internet). All communication between client and server happens over secure HTTPS/TLS connections. We do not use cookies or store any personally identifiable information on your computer or mobile device. Authentication utilizes the oAuth2 protocol (https://en.wikipedia.org/wiki/OAuth) which is used by Apple, Google, and other top-tier technology-dependent businesses to secure their data and transactions. CatalogIt stores the oAuth2 refresh and access tokens on the client’s devices; the client token expires every few minutes; the refresh-token can be revoked at any time. For added security, CatalogIt supports multi-factor authentication which adds an additional layer of security to your account by requiring an additional code to log in that is either sent to your mobile device via text message or generated by a third-party authenticator app such as Microsoft Authenticator, Google Authenticator, etc.