Data Security FAQs
Is SearchUnify a single tenant or a multitenant solution?
SearchUnify offers a multitenant edition and two single editions
-
The Cloud Edition is a multitenant edition. Consult Features Not Supported in the SearchUnify Cloud Edition.
-
The Data Center Edition and the SUP Edition are single tenant editions.
Can I migrate data from a single tenant (Data Center Edition) edition to a multitenant edition (Cloud Edition)?
There is no out-of-the-box migration from the Data Center Edition or the SUP Edition to the Cloud Edition.
Does SearchUnify store any data in middleware?
SearchUnify stores encrypted access/refresh tokens for content sources (Lithium, Salesforce, Jive etc.). These credentials are stored to synchronize the content in the SearchUnify index.
What Cookies are Managed by SearchUnify?
The list of cookies managed by SearchUnify are listed in this community article on cookies.
How does SearchUnify ensure that the content sources’ authentication information is secure?
All the authentication access tokens/refresh tokens stored in the middleware are encrypted using AES-256 encryption algorithm.
Which content objects will be accessed by SearchUnify?
It depends upon what content needs to be made searchable via SearchUnify. For example, in a Lithium community, SearchUnify supports searching ideas, discussions, blogs etc. So, these content pieces will be stored in the search index.
Which API is used to connect with the content sources?
SearchUnify uses the standard platform REST APIs on SSL for all the content sources. For websites, Apache-based crawlers are used to crawl the websites and index the content.
How are the API keys stored?
Authentication tokens, client secrets, and passwords are securely stored in an encrypted format to ensure the highest level of security and to protect sensitive information.
Does SearchUnify upgrade automatically with SAAS based content source upgrade releases?
SearchUnify automatically updates its crawlers whenever there is a release upgrade of any of the SaaS-based content source.
Do SearchUnify results respect the access level for content?
Only those content items which a user has access to, show up in search results. For example, in the case of a Jive community, a user can see only that content in search results which belongs to the groups that he/she has access to.
Is the access to the SearchUnify production admin panel encrypted?
Yes, access to the SearchUnify admin panel is fully encrypted.
-
The data at rest is encrypted using AES-256, ensuring that any stored data remains secure.
-
The data in transit is encrypted using TLS 1.2 and 1.3, safeguarding it from unauthorized access during transmission.
How long is the statistical data retained? Is there a way to remove it on request?
SearchUnify retains statistical data from the production environment for a period of one year.
If your team needs to remove or delete this data before the retention period expires, please contact the SearchUnify support team to initiate the process. The support team will ensure that the data is securely deleted in accordance with your request.