AWS is divided into geographic Regions, which are physical data centers. These are known as EC2 Regions and are designed to be completely isolated from the others. The EC2 locations are called Availability Zones. The AWS Cloud operates dozens of Availability Zones within 16 geographic Regions worldwide.
Administrative backend accounts require a username and password, and can only be managed by an administrator with account creation rights. Administrators with the right to create accounts may create as many accounts as needed, each with different administrative accessibility (i.e. member profile management, donation management, store order management, mass emailing capability, etc.).
Security measures are implemented at multiple layers and designed to protect against DDoS, XSS and SQL Injection type attacks, and has explicit policies to block unwanted traffic from within or outside the network.
Passwords are not stored in the database. New and changed passwords are “hashed” using industry-standard encryption techniques. Only hashed versions of passwords are stored. They cannot be decrypted.
Customer data is stored on a server configured with redundant storage, allowing for no service interruption in the event of a single disk failure. Customer data is backed up daily to the AWS Simple Storage System (s3). YM monitors the infrastructure of all customer sites 24/7.