Security & Deployment
Deploy where your compliance requires — and keep ownership of your data
Zbix software runs where you need it — public cloud, your own VPS, or entirely within your data centre. Every deployment model comes with the same enterprise controls: role-based access, immutable audit logs, and structured backup.
Deployment models
Run Zbix software in the environment you control
Whether your policy mandates on-premise isolation or you prefer the operational ease of a managed cloud, we support the deployment model — and document your environment in writing before go-live.
Cloud
Managed SaaS
VPS
Your cloud VM
Zbix Application
Your deployment
On-Premise
Your data centre
Private Cloud
Dedicated tenancy
Zbix Application
Your deployment
Cloud
Managed SaaS
VPS
Your cloud VM
On-Premise
Your data centre
Private Cloud
Dedicated tenancy
Cloud
Managed SaaS
Hosted on hardened cloud infrastructure. Ideal for teams that want zero server overhead with automatic updates, backups, and SSL managed out of the box.
- Zero-ops
- Auto-updates
- SSL included
- 99.9% uptime SLA
VPS
Virtual Private Server
Deployed on your own virtual private server — a cloud VM you control. You own the environment; we support the application layer through your maintenance contract.
- Your VM / cloud account
- Full root access
- Custom domain
- App-level support
On-Premise
Your data centre
Installed within your own data centre or server room. Preferred by banks, government agencies, and regulated enterprises that cannot permit data to leave their premises.
- Air-gap capable
- Zero outbound data
- Intranet-only option
- EDMS-grade isolation
Private Cloud
Dedicated hosted tenancy
A fully isolated instance on a dedicated hosted environment — the operational simplicity of cloud with the data residency guarantees of on-premise deployment.
- Single-tenant
- Data residency control
- Dedicated resources
- Custom SLA
Security controls
Enterprise controls across every deployment
The same access controls, audit mechanisms, and data protections apply regardless of which deployment model you choose.
Role-Based Access Control
Define granular permissions per user, role, and department. Restrict document access, workflow actions, and administrative functions independently.
Immutable Audit Logs
Every action — login, view, edit, approval, deletion — is recorded with a timestamp and user identity. Logs cannot be altered or deleted by application users.
Data Ownership
Your data belongs to you. On-premise and VPS deployments give you full control of the database and file store — we never access production data without your explicit consent.
Backup & Restore
Configurable automated backups — schedule, retention period, and destination are set by your team. Restore procedures are documented and tested as part of onboarding.
SSL & Reverse Proxy
All traffic encrypted in transit via TLS. We provide configuration templates for nginx and Apache reverse proxies, including recommended cipher suites and HSTS headers.
Audit & data ownership
A record of everything — held by you
Immutable audit logs capture every user action with a timestamp. On-premise and VPS deployments keep that log — and every document — inside your own environment.
Your data, your control
On-premise and VPS deployments give you complete ownership of the database and file store. Zbix Technologies does not access, replicate, or process your production data without your explicit, documented consent.
- Database on your server
- Files on your storage
- No telemetry without consent
- Full export at any time
Practices
How we approach security and implementation
Technical controls matter, but they need to be backed by structured processes. Below are the practices we follow across security testing, ongoing support, and every new deployment.
Security Testing
Applications are reviewed for common vulnerability classes before each production release.
- OWASP Top 10 review cycle
- Input validation & injection hardening
- Session management and token security
- Dependency vulnerability scanning
Support & Maintenance
Structured support tiers ensure issues are addressed within defined windows appropriate for enterprise and government deployments.
- Named support contacts for enterprise accounts
- Patch delivery within agreed maintenance windows
- Version migration assistance
- Documented upgrade runbooks
Implementation Approach
Every deployment follows a structured engagement — from requirements review to go-live acceptance — so security requirements are captured before, not after, go-live.
- Pre-deployment security requirements review
- Environment hardening checklist handover
- Admin and end-user training sessions
- Post-go-live stabilisation period
Zbix Technologies operates as a registered Pvt. Ltd. entity in India. Enterprise and government engagements include a signed deployment agreement that documents data handling, access controls, and support commitments specific to your environment.
Request a consultation
Discuss your deployment and compliance requirements
Tell us about your infrastructure, data residency requirements, and security policies. We will prepare a deployment proposal specific to your environment.