Getting started
Would you like to try Letterworks, but are you worried about whether the security of the service is good? Security solutions and policies for IT services are becoming increasingly important as cyber threats evolve at an increasingly rapid pace. In fact, last year, 3,464 cases of information and communication network infringement crimes such as hacking and dissemination of malicious programs were recorded, * and it was found that approximately 44.3% of citizens experienced personal information infringement. **
Content Localization SaaS*** Letterworks has an excellent security system. This is because all customer content is stored separately in individual repositories, and individual repositories can only be accessed through user authentication. Let's take a look at Letterworks' security solutions that are safe from hacking.
* State of Cybercrime 2022 - National Police Agency
** 2021 Personal Information Protection Survey - Personal Information Protection Committee
*** Software as a Service, Software as a Service
Letterworks' security solutions, AWS and Auth0
Letterworks uses AWS cloud servers and Auth0 services for security. All content and data related to the project, such as original text files and translation result files, are protected by AWS services, and users' accounts and personal information are managed securely through Auth0, which has the highest security in the world.
Note: Security check items in Letterworks
- SOC 2 Type 2 certification (system and organization controls)
- PCI DSS Level 1 certification (payment card security standard)
- ISO 27001 certification (information security management system)
- ISO 27017 certification
- ISO 27018 certification
- AWS Security Validation
- Auth0 security, privacy, and compliance
- Amazon S3 security and access management
Secure your content, Amazon AWS cloud
Source: AWS website
AWS's world-class security services and solutions support flexible and secure cloud computing environments. The highest standards of privacy and data security have been established, and strategic security services of ① prevention ② detection ③ response ④ resolution are provided. Furthermore, self-developed automatic inference tools are applied to key cloud service areas such as storage, networking, virtualization, identity, and encryption, and can be mathematically verified.
AWS publishes research insights and papers on such systematic security to the world through various channels such as its website, blog, and YouTube. For more details, please refer to the following website and YouTube channel.
References
https://aws.amazon.com/ko/security/?nc=sn&loc=0
https://www.youtube.com/playlist?list=PL_EDAAla3DXVNcf3bNAzLsr6W3NMjZZp8
Privacy is protected by Auth0 authentication
Source: Auth0 homepage
Auth0 is a third-party security service that delegates access to SaaS services, integrates social login and profiling, and helps optimize user experience and privacy. Letterworks member information is stored in encrypted form via Auth0's JWT****, and access to services and virtual environments can be controlled by granting different permissions within JWT. In other words, a user-created Letterworks Workspace cannot be accessed by anyone without authentication from Auth0.
Meanwhile, Auth0, which operates services in over 70 countries, is a proven service used by 42 million daily logins and more than 2,000 enterprise customers. For more details, please refer to the following website and blog channel.
**** Jason Web Token, an encrypted user authentication token
References
https://auth0.com/
https://auth0.com/blog/
Letterworks Security Q&A
Q. Isn't the content I've worked on used as Letterworks AI training data?
User content will never be used or sold as Letterworks' AI learning data. The LETR engine developed in-house uses only data created in joint research with businesses operated for the purpose of building Letterworks' artificial intelligence learning data.
If a dedicated translator is provided by converting customer content into data for learning, it is only possible through an individual contract.
Q. How are the projects tested during the pilot operation (PoC) managed?
If you apply for a pilot operation (PoC) before introducing the solution, the number of characters that can be used during the test period is provided to 1 administrator account, and then workers are added to the group project to proceed with the translation work. Even during PoC, the customer's content is not leaked to Letterworks because the project is carried out on the administrator and worker's individual subscription accounts.
Also, when introducing a PoC and signing a contract, we prepare a non-disclosure agreement (NDA, Non-Disclosure Agreement) in the customer form upon request.
Q. What should I do if the content of a group project I worked on privately is leaked to the outside world?
Letterworks is not responsible for content leaks due to individual malice or negligence during group projects involving multiple workers. However, in the event of a content leak, you can check the progress history of all workers in the project manager workspace and refer to the workers' access dates and times recorded on the Letterworks server to help identify and resolve the situation.
While finishing
I learned about Letterworks' security solutions. If you want to get faster access to technology developments and news, subscribe to the [Monthly Letterworks] newsletter!
Good content to watch together
Top Artificial Intelligence (AI) and Natural Language Processing (NLP) News for Q1 2023
