For Premium Maintenance customers who opt in, Asset Manager offers remote performance monitoring of IPsonar and Asset Manager deployments. This service keeps your Solutions Architect in the loop regarding how well your Asset Manager and/or IPsonar systems are working, without any overhead, involvement, or intervention on your part.

The service enables us to proactively address performance lags, hang-ups, and system misconfiguration in advance of those issues becoming a noticeable problem on your end.

To provide this service, we use safe performance monitoring software that monitors your Asset Manager solution and reports any problems found to us.

Some customers are concerned about the security and privacy of using performance monitoring software in their environments. This page is intended to explain why our performance monitoring solution is suitable for use in most regulated environments.

What data is collected?

Asset Manager collects performance data only for the Asset Manager Solutions where our performance management plug-in is installed. In general, this includes aggregate time measurements for application transactions and web page loading, application errors and transaction traces, and server resource-utilization statistics. By default, literal values in the “where” clauses of SQL statements are obfuscated. The application monitoring agent collects: application request activity, including view and controller breakdowns, database query activity, including create, update, and delete breakdowns, view activity, requests that result in an error, process memory and CPU usage.

We do not collect any sensitive or personal information—nor any data used or stored by a monitored application. By default, our performance monitoring agent is configured not to collect any HTTP parameters or any literal values in the “where” clauses of SQL statements. These values are removed before being sent to us.

How is data protected?

Performance data is encrypted in transit. SSL-encryption is enabled by default for data being sent to us. Data collected and stored by us is not encrypted. We do not collect or store any sensitive customer data. Our performance-management plug-in does not open a hole in customer firewalls. All communication from agents to the performance-management servers is outbound on either port 80 or 443 and can be configured to use a proxy server. Our performance management agents do not need to listen for incoming connections. We do not have the ability to auto-update agents installed on your servers. All updates must be manually installed. Upon termination of performance management services, all data will be expired out of the systems (including backups) within 90 days.

What is its compliance profile?

Asset Manager's performance monitoring plug-in can be installed in a PCI-compliant environment. By default, the software does not receive any cardholder data. In addition, the software can be configured to run behind a proxy to satisfy the PCI requirement to not allow any direct connections between the Internet and the cardholder data environment,

Asset Manager's performance-monitoring plug-in can also be safely deployed in a healthcare environment without impacting HIPAA compliance obligations. By default, Asset Manager will not receive any protected health information.