Hardware

• Servers have redundant internal power supplies
• Data is on RAID 10, operating system on RAID 1
• Servers are mirrored and can failover in less than one hour

Software

• Code in ASP, running on SQL Server 2000 and Windows 2000 Server
• Latest patches applied to all operating system and application files
• SSL encryption of all billing data
• Data backed up every hour internally
• Data backed up every night to centralized backup system, with offsite backups in event of catastrophe

Physical

• Servers kept in locked cage
• Entry requires a passcard and biometric recognition
• Digital surveillance equipment
• Controls for temperature, humidity and smoke/fire detection
• Staffed 24/7

Network

• Multiple independent connections to Tier 1 Internet access providers
• Fully redundant OC-48 SONET Rings
• Uptime monitored every 5 minutes, with escalation to SurveyMonkey staff
• Firewall restricts access to all ports except 80 (http) and 443 (https)
• QualysGuard network security audits performed quarterly