The security and privacy of your information is important to us.

At Eco Terra Media Group (ETMG) we take security very seriously. We are completely committed to maintaining the security, integrity and confidentiality or your information. ETMG & TeLMS was architected and built from the ground up to be secure. Security is built into the fabric of the service.

After all, we realize that one tiny security breach and ETMG would not be in business – and we have worked too hard and invested too much to let that happen.In fact, all the founders and key members of the team personally use ETMG to fetch their documents from all their accounts – and that should speak volumes. But we understand that you need to know what we mean by security and what we are doing to protect the integrity and confidentiality of your information, so here are the details.

Encrypted communication:

No matter what device you use, from your desktop browser to your mobile phone, your data is always sent using 256-bit SSL – the highest standard communication security. So nobody can ever see or steal your data as it is transmitted to or from your ETMG account.

Encrypted data:

The credentials to your ETMG account, and to all your account connections are encrypted from the moment they are entered. On our servers and in our database, your credentials are encrypted utilizing AES 256-bit encryption, which is the highest encryption standard available today. Bottom line: even if a hacker could get access to your credentials on our servers (they cannot), it would be impossible for them to read any of the data.

Secure servers, Secure people:

ETMG employs the very reputable cloud services. So ETMG runs on, and all the data is stored on, servers managed by a large, publicly traded company whose entire reputation rests on ensuring the privacy, safety, and security of their customers data. Our servers sit inside climate-controlled, physically secure buildings that can only be accessed by biometric scans. Access to any of our systems that hold any of your data is strictly limited and constantly monitored. In addition, as discussed above, your data is encrypted at all times while on our servers.

Read only service:

Our software can do nothing more than fetch and deliver your documents to you. If a third-party somehow got hold of your ETMG credentials (which is impossible unless you personally provided them with this information), they still could not get the credentials to your accounts since we never display this information in your ETMG account. We don’t store the documents we fetch for you on our servers. They simply “pass through” from your institution to your destination of choice, so there is no security issue here. Again, all internet communications utilize industry-standard SSL encryption.

Immediate deletion:

At any time you can delete one or all of your account connections. If you delete any of your connections, we remove all your credential information for those connections immediately. So at that point we would be storing nothing at all about those accounts.

Bank-Level security:

We apply many of the bank-level security practices. This includes encryption, auditing, logging, and back-ups. We utilize third-party services to test our service for security issues – including scanning our ports, testing for mySQL injection, and many other potential security weaknesses.

We also lead the way in cloud based security In addition to data encryption in transit and at rest, we operate comprehensive compliance and assurance programs.

HIPAA Health Insurance Portability and Accountability Act

American Institute of Certified Public Accountants System and Organization Controls (SOC) Trust Services Principles

National Institute of Standards and Technology (NIST) 800-53 Security and Privacy Controls for Federal Information Systems and Organizations

US/EU Privacy Shield Data Privacy Practices

CSA Cloud Security Alliance



Server Security Report for EcoTerraMedia.Com &


Network Server on 443 Nice, this host has a network service listening on port 443. SPDY works over SSL/TLS which usually listens on port 443.
SSL/TLS Detected Good, this host is speaking SSL/TLS. SPDY piggybacks on top of SSL/TLS, so a website needs SSL/TLS to use SPDY.
Valid X.509 Certificate This website is responding with a valid X.509 certificate. X.509 certificate errors can cause the browser to display warning messages and to stop speaking with the website, so using a valid certificate is an essential step to supporting SPDY.
ServerHello Contains NPN Extension Nice, this server including the NPN Entension during the SSL/TLS handshake. The NPN Extension is an additional part of the SSL/TLS ServerHello message which allows the web server to tell browser it supports additional protocols, like SPDY.
Success! SPDY is Enabled! Hurray, this website is using SPDY! The following protocols are supported:
  • spdy/3.1
  • http/1.1
HTTP Fallback Detected This website is using SPDY, but it also supports traditional HTTP over SSL. This ensures that older web browsers can still access this site using HTTP
HTTP Redirects to SPDYPretty Sexy! Accessing this website via HTTP automatically redirects the user to access the website via SSL/TLS and SPDY. This means all of website’s visitors that can browse the site with SPDY, do browse the site using SPDY.
Strict-Transport-Security Supported
Excellent! This website is using HSTS, also known as Strict Transport Security. This tells the browser to always use SSL when talking to this website, allows more of your visitors the opportunity to both be secure and to use SPDY. The server is sending the header Strict-Transport-Security: max-age=31536000; includeSubDomains which tells the web browser to always use SSL to access this website for the next 365 days.

Complete IP Traceback Logging:

IP of the user:
Country: United States
State or region: Virginia
City: Ashburn

Data from: GeoLite2 City database (updated monthly)

Print Friendly, PDF & Email
Do NOT follow this link or you will be banned from the site!