This schedule forms a part of the Agreement and contains the Service Descriptions of Xift’s Email Security and Archiving Service.
1. Perimeter Defence
The Xift perimeter is guarded by a configurable secure gateway. This allows the inclusion of other email systems that may send email on behalf or Customer’s domain without allowing illegitimate senders to imitate Customer’s domain’s email addresses.
Support for SPF and DKIM records with guided information on how to implement these to help your domain deliver email successfully to other email filtering solutions.
2. Email Anti-Virus
The Xift Email Anti-Virus service scans inbound and outbound email and attachments for viruses and phishing content.
Each email is scanned by multiple anti-virus methods
Any inbound or outbound email that contains a virus will be destroyed. The service will send an alert notification to relevant individuals depending on the configuration of the Customer’s Service.
Administrators can configure alert notifications as follows:
On inbound email, send to the recipient (default) and multiple IT administrators
On outbound email, send to the sender (default) and multiple IT administrators
Attachment filtering takes place on the perimeter. This enforces common email standards for preventing application files and script files from being transported via email.
Configurable notification settings allow the Administrator to choose how violations of these policies are reported.
3. Email Anti-Spam
The Xift Email Anti-spam service scans inbound email and attachments for spam
Each email is scanned using several hundred different spam identification techniques.
The Customer can create private approved sender lists (“whitelists”) – both by administrators across the entire domain and individuals at the User level.
Any inbound email that is identified as being spam will be held within Xift’s spam quarantine. The service will send an alert notification to all individuals on the domain at pre-determined times and frequencies (for example, once in the morning and once at the end of the business day).
The notification email is personalized for the user and lists all emails currently held in the quarantine addressed to that User.
The User can log into theXift user portal and choose the action for the emails held in the quarantine:
Read, examine and download the email
Release the email to the intended recipient’s mailbox
Leave in the quarantine for Customer-wide rules to be applied
Domain administrators can release spam email on behalf of one of their users.
4. Email Archiving
The Xift Email Archiving service stores inbound and outbound email and attachments in the Xift email archive.
Each email and attachment is indexed and stored in the Customer’s archive, which is unique to that Customer, and which is encrypted using 128 bit encryption. The encryption key to the Customer’s archive is available to the Customer and Xift.
Users can search their own personal archive using the Xift user portal. Permitted users can search emails across all users on the domain using the Xift portal.
Advanced search techniques allow the user to search across their archive without learning complex syntax.
Using a multi tier archiving architecture Xift is able to supply industry leading low prices for its long term archive. Recent email is stored in a hot archive, allowing instant access, while emails that are older than one year are moved to the cold archive that is still searchable and accessible but without the high cost of other electronic archives.
5. Import / Export
The domain administrator can synchronise all users, mailboxes and alias email addresses using a secure synchronisation tool. This runs on the client’s local server so that no additional ports need to be opened. The data is synchronised using SSL and 256 bit encryption.
The Service will automatically import all emails that sit within the user’s Exchange mailbox.
The Service will not import emails that sit in offline PST files. All files for import will need to be moved to the users Exchange folder, or presented to Xift in EML format.
Xift will recommend technology partners for migrations from other email archives where needed.
Using the latest web technologies the full Xift portal is available across all web-enabled devices using current internet browsers.
Customer must change configuration settings through the Domain Administrator’s Portal or the default settings will apply for the Service.
Technical support is provided by telephone or online on a 24×7 basis. Customer will have access to a self-service help and support knowledge base with the Service.
All Customer data stored or archived by the Service (“Customer Data”) is the sole property of the Customer and nothing herein conveys to Xift any legal or equitable right, title or interest in the Customer Data.
Customer Data shall be archived during the Subscription Term. Before the end of the Subscription Term, Customer shall notify Xift in writing to a) delete Customer Data at no charge (unless prohibited by law or court order); or b) retain Customer Data in the archive so that Customer may extract the Customer Data from the archive. In the event that Customer fails to provide written notification to Xift as provided in the preceding sentence, Xift shall delete Customer Data (unless prohibited by law or court order).