Data security of our clients is top priority of Uranus Software

National security concerns, tighter visa norms, exhaustion of H1B visas will lead to shortage of competitive immigrant worker. To stay ahead in global competition, Corporate America needs outsourcing and offshoring. The major obstacle for outsourcing and offshoring is not anti-offshoring bill, it is the concern about data security, privacy protection, 'poor' intellectual property rights protection in developing countries, and sensitive knowledge transfer. Protecting data security of our clients is top priority of Uranus Software.

How we protect your data and privacy

We adhere to the Safe Harbor Principles to protect your data privacy. Safe Harbor is an area where information can be worked upon without compromising its security. The principles require the following:

1. Notice: Organizations must notify individuals about the purposes for which they collect and use information about them. They must provide information about how individuals can contact the organization with any inquiries or complaints, the types of third parties to which it discloses the information and the choices and means the organization offers for limiting its use and disclosure. 
   
2. Choice: Organizations must give individuals the opportunity to choose (opt out) whether their personal information will be disclosed to a third party or used for a purpose incompatible with the purpose for which it was originally collected or subsequently authorized by the individual. For sensitive information, affirmative or explicit (opt in) choice must be given if the information is to be disclosed to a third party or used for a purpose other than its original purpose or the purpose authorized subsequently by the individual. 
   
3. Onward transfer (Transfers to Third Parties): To disclose information to a third party, organizations must apply the notice and choice principles. Where an organization wishes to transfer information to a third party that is acting as an agent, it may do so if it makes sure that the third party subscribes to the safe harbor principles or is subject to the Directive or another adequacy finding. As an alternative, the organization can enter into a written agreement with such third party requiring that the third party provide at least the same level of privacy protection as is required by the relevant principles. 
   
4. Access: Individuals must have access to personal information about them that an organization holds and be able to correct, amend, or delete that information where it is inaccurate, except where the burden or expense of providing access would be disproportionate to the risks to the individual's privacy in the case in question, or where the rights of persons other than the individual would be violated. 
   
5. Security: Organizations must take reasonable precautions to protect personal information from loss, misuse and unauthorized access, disclosure, alteration and destruction.
   
6. Data integrity: Personal information must be relevant for the purposes for which it is to be used. An organization should take reasonable steps to ensure that data is reliable for its intended use, accurate, complete, and current.
   
7. Enforcement: In order to ensure compliance with the safe harbor principles, there must be (a) readily available and affordable independent recourse mechanisms so that each individual's complaints and disputes can be investigated and resolved and damages awarded where the applicable law or private sector initiatives so provide; (b) procedures for verifying that the commitments companies make to adhere to the safe harbor principles have been implemented; and (c) obligations to remedy problems arising out of a failure to comply with the principles. Sanctions must be sufficiently rigorous to ensure compliance by the organization.
   

We encrypt sensitive data and mask information such as social security number, credit card information, personal information, business and process data. Data will not leave the US geography as servers are hosted in USA. Remote maintenance by offshore personnel is done through strict security measures.

IP rights protection

China has stringent IP laws after joining WTO, yet Americans have reservations about their enforcement. All of our contracts with US clients are subject to US courts, though the major portion of the work is done out of China. We comply with IP regulations in the US.

Solutions to concerns about transfer of knowledge

We take prudent steps to prevent the transfer of sensitive knowledge:

• Each client's project/system is protected by firewalls. 
  
• Our employees sign non-disclosure and non-compete clauses. 
  
• Our contracts with clients have severance clauses to protect violations