Data and data integrity is of great importance in any IT system. This is why DecideAct utilise MVCC databases to store and process data. All changes to data in the DecideAct system are audited, and to ensure the validity of the audit logs we have implemented a Blockchain validation system.
The DecideAct Blockchain validation system is built on Stellar - a global distributed blockchain network used by banks and FinTech companies. Each locally stored audit is digitally fingerprinted and stored on the Stellar network.
Data is digitally fingerprinted (one way hashed) using SHA256 and the returned hash is stored on the Stellar network. Once the hashed value is stored it can be retrieved from the Stellar network and compared to the hash value and timestamp stored in the DecideAct database. This ensures that customers at any point in time can verify that the data stored and processed by DecideAct is valued and governed.
Data stored on the Stellar network is one way hashed value of audit data, and the hash cannot be reverse. This means that no confidential data ever leaves the DecideAct system, and we comply with all GDPR rules.
Data is stored in a PostgreSQL database. Access to the database is encrypted and backups are encrypted at rest. Data can and will be removed to honor GDPR rules defined by the EU.