Eloqua - Security FAQ

How do you connect to my data in Eloqua?

Madison Logic authenticates with Eloqua using their recommended OAuth2.0 service
To pull data from Eloqua, we use the Oracle Eloqua Bulk API

More information on the installation process can be found here

What data do you retrieve from Eloqua?

We query the following entities from Eloqua:

Contacts
Segments

We ONLY retrieve the fields that you define as "field mappings" during configuration of our Eloqua integration module. From these entities we retrieve the following information:

Contacts
- Field Mapping Values from Contacts (not saved to our system - live query)
- Domain from Email (saved)
Segments
- Domain from Email (saved)
ABM Signals
- Eloqua Contact ID (saved)
- Domain for email (saved)

Where do you physically store my data?

Madison Logic stores your data in the United States, in the state of Virginia, within the Amazon Web Services region us-east-1.

How is my data secured in transit?

When Madison Logic retrieves your data from Eloqua's APIs, it is secured in transit by encryption using Transport Layer Security (TLS) version 1.2.

When your data is transferred within Madison Logic systems, it is also secured in transit by encryption using TLS 1.2.

How is my data secured at rest?

Your data is secured at rest by encrypting it using AWS Key Management Service APIs.

AWS KMS uses the Advanced Encryption Standard (AES) algorithm in Galois/Counter Mode (GCM), known as AES-GCM. AWS KMS uses this algorithm with 256-bit secret keys.

Is there a process in place for removing our content and data at the end of the use agreement?

Yes. We can ensure that your content is securely removed from Madison Logic systems. Contact us for more information.

What type of compliance and controls are in place?

Security and quality controls in Amazon Web Services have been validated and certified by the following compliance schemes:

AWS Service Organization Controls (SOC 1, SOC 2, and SOC 3) Reports. You can request a copy of these reports from AWS Compliance.
PCI DSS Level 1. For more details on PCI DSS compliant services in AWS, you can read the PCI DSS FAQs.
ISO 27017. For more details on ISO 27017 compliant services in AWS, you can read the ISO-27017 FAQs.
ISO 27018. For more details on ISO 27018 compliant services in AWS, you can read the ISO-27018 FAQs.
ISO 9001. For more details on ISO 9001 compliant services in AWS, you can read the ISO-9001 FAQs.
In evaluation for FIPS 140-2. For more details, you can view the FIPS 140-2 Implementation Under Test List.

References

Eloqua Developer Documentation

Amazon Web Services Documentation

AWS Key Management Services
KMS - Cryptography Basics describes the cipher used: Advanced Encryption Standard (AES) algorithm in Galois/Counter Mode (GCM), known as AES-GCM. AWS KMS uses this algorithm with 256-bit secret keys.