CSG
Cloud
Services

Regain control of your data.

Get your personal Cloud platform for storing any data on a server controlled only by you.

With us you get a secure system of the full content collaboration suite to manage of all your files, documents, media and communications in an one package.

What you get
with
CSG Cloud

CSG Cloud is a program for organizing personal cloud storage with the possibility of placing it on your own physical server.

You can choose any server you like: at home, in a data center or at a provider. CSG Cloud runs on that server, protecting your data and giving you access from your devices. Through CSG Cloud you also access, sync and share your existing data on that FTP drive at any time and any way you want.

Unlike proprietary services such as Dropbox, Google Cloud or Office 365, you can add additional applications to the architecture of our Cloud and have full control over your data with access to all your files wherever you are.

  • Absolute privacy

    All data is stored under your full control on your own servers. No extraneous resources have access to them. Control, Track, protect and manage your company's data. Guaranteed compliance with business and legal requirements. Nothing leaks out, not even metadata.

  • Access whenever you are

    CSG Cloud provides transparent access to all your data in any storage. You always have full access to collaborate and communicate from any device, anywhere. Whether you are at home, in the office, on the road, or on vacation, - your location does not matter.

  • Your full control

    You do not need any third party companies that have access to your confidential data and respond to its security. All data is stored on your server and under 100% control of your IT team with highly secure access and communications that are necessary for the productive operation of your company.

Serving
Your
Requirements

CSG Cloud is a fully on-premises solution, so you have the benefits of online collaboration without the compliance and security risks.

Share your files, collaborate on documents, connect cloud to an existing or created your own mailservice, make audio or video call, or organize a group conference without data leaks, connect to your Dropbox, Google Drive and Amazon S3, and many more.

We are committed to provide service that is a perfect fit for companies, organizations and communities of all types.

Below are just some of the key features you will get with
CSG Cloud

    • 01
      Automate repetitive tasks

      CSG Cloud enables users to automate repetitive tasks and optimize business processes.

      Through File Access Control and automatic file tagging, CSG Cloud gives administrators control over data access by enabling them to define strict rules requests need to adhere to. If users in certain groups or geographic regions should not be given access to certain file types or if data with a specific tag should not be shared outside the company, administrators can make sure their CSG Cloud instance enforces these rules.

      Combined with our Secure Sharing Outlook addin (and by disabling direct email attachments), File Access Control can play a crucial role in enforcing company policy on data sharing.

      The Workflow engine expands the capabilities of auto tagging and File Access Control, enabling administrators to start any kind of actions based on triggers.

      File retention and deletion can be controlled based on tags set manually or automatically, ensuring legal or practical requirements for the longevity of data lifespans can be enforced.

    • 03
      Get your own online Office

      Install Collabora Online in CSG Cloud. Collabora Online is a powerful LibreOffice-based online office suite with collaborative editing, which supports all major document, spreadsheet and presentation file formats and works in all modern browsers.

      Collabora Online supports editing your documents in real time with multiple other editors, showing high fidelity, WYSIWYG rendering and preserving the layout and formatting of your documents.

      Users can insert and reply to comments and invite others without a CSG Cloud account for anonymous editing of files with a public link shared folder.

      Collabora Online supports dozens of document formats including DOC, DOCX, PPT, PPTX, XLS, XLSX + ODF, Import/View Visio, Publisher and many more...

    • 05
      Unified search

      Search results from all over CSG Cloud with one click in corner. Additional search providers can be installed and over a dozen different search providers are available to show you Github issues, Moodle courses, Jira tickets and more

      Core CSG Cloud apps like Files, Calendar, Contacts, Talk, Mail and Deck provide results in unified search. A wide range of integration apps provide results from third parties like source code management platforms Github and Gitlab, ticketing systems like Jira and Zammad, e-learning platforms like Moodle, social media and forum platforms like Twitter, Redditm Discourse and many more. Developers can build their own additions easily and many apps are available in our app store.

      CSG Cloud includes a powerful full-text search engine capable of using Elastic Search as back-end. Its flexible plugin-based interface enables search capabilities beyond files and accommodates other back-end solutions like Apache So.

    • 07
      A wide variety of second factors

      CSG Cloud supports a wide variety of second factors and allows admins to enforce use of 2-factor authentication.

      - Time-based One-Time Password (TOTP, including Google Authenticator or similar apps;

      - Universal 2nd Factor hardware tokens (U2F, like Yubikeys or Nitrokeys, also supports NFC);

      - FIDO2 and WebAuthn compatibility, allowing use of hardware tokens, Windows Hello, FaceID and other FIDO2 compatible technologies to authenticate users or function as second factor. Passwordless login with WebAuthn is supported;

      - Gateways: SMS, secure messaging apps Telegram, Signal and more;

      - Notification (just click to approve login on an existing device like phone);

      - Code in an email;

      - User backup code (User has to generate these in advance and store them in a safe location);

      - Administrator backup code (creating those can be delegated to group admins);

      Any number of these can be enabled by the admin.

      Active user sessions can be invalidated through a list, by removing the user in the admin settings or by changing passwords. Users can manage their own sessions and devices.

    • 09
      Full synchronization

      The CalDAV and CardDAV plugin offers two-way sync for CalDAV calendars and tasks, CardDAV contacts and can also handle the Google native Contacts and Tasks API.

      The plugin handles Outlook categories, mapping CalDAV server colors to Outlook category colors and syncing calendars and tasks to the categories. The plugin also handles timezones and recurring events with exceptions and can deal with Outlook custom properties.

      The Outlook CalDav Synchronizer supports:

      - SSL/TLS, also with self-signed certificates and proxy;

      - Auto discovery of calendars and address books;

      - Configurable sync time range filter;

      - Time-triggered-sync and sync changes from Outlook immediately;

      - and it can use server settings from an Outlook IMAP account profile.

    • 11
      Single-sign-on

      CSG Cloud Bridging allows the connection of Talk rooms to one or more channels on other services like IRC, Slack, Microsoft Teams, Matrix, Mattermost, XMPP and many more.

      A bridge sends any messages from the third party network into the Talk room where it was configured, and any messages put in the Talk room to the bridget third party network.

      Multiple networks can be bridged into a single CSG Cloud Talk room, so messages can go from Slack to Teams and IRC via CSG Cloud.

    • 02
      Secure access to your data

      CSG Cloud unlocks corporate data silos, bringing together data from your existing storage systems in one seamless user interface.

      Your IT stays in control of the data thanks to powerful File Access Control and logging capabilities.

      Access existing storage silos like FTP, Windows Network Drives, SharePoint and Samba shares seamlessly through CSG Cloud. Protect and optimize data usage in line with compliance and company policy by controlling sharing and performance for each external storage system.

      Some of the storage technologies supported in CSG Cloud include NFS and local storage as well as scalable, multi-bucket capable object storage like S3 and SWIFT compatible and CIFS/Windows Shares. CSG Cloud can also seamlessly access files on (s)FTP, SharePoint systems and more.

      Server side encryption can optionally be enabled on select external or primary storage to securely encrypt the data residing on them.

    • 04
      Easy account management

      CSG Cloud features integration with external user directories like LDAP, Active Directory or others as well as built-in account management, two-factor authentication and Single-sign-on support.

      Admins can create, modify, search and view user accounts using CSG Cloud built-in user management.

      If you need to integrate CSG Cloud with an existing system, take advantage of support for one or more LDAP directories instead of or in addition to local users. CSG Cloud can secure logins with two-factor authentication and supports single sign-on through SAML, OAuth2, Kerberos and others.

      The administrator can delegate some work by elevating some accounts to group administrator over specified groups. This allows them to create new users as members of these groups as well as delete and modify them.

      In Virtual Dataroom scenarios guest accounts can be given access to data read-only or with editing rights while blocking downloads and watermarking all files. Documents can shared with them through the Secure Mailbox feature from the CSG Cloud Outlook Add-in which prevents the mail body and attachments from leaking.

      While CSG Cloud supports Mobile Device Management solutions, thanks to built-in support, remote wipe will work on systems not under management of the company. If you permit downloading of documents by the third party, you can wipe the documents from their devices when the the collaboration has ended.

      Remote wipe can be used on a per-device basis by users and on a per-user base by the administrator.

      CSG Cloud features a high performance, full-featured LDAP application which lets users authenticate through their LDAP credentials. Group management, quotas and sharing permissions can be managed as usual. CSG Cloud features LDAP group support, sharing, primary groups and easy configuration with auto-detection of LDAP attributes.

    • 06
      External,encrypted storage

      The external storage feature of CSG Cloud gives users access to their data wherever it is. CSG Cloud Files can access data stored with a wide variety of popular cloud service providers such as Amazon, Google and Dropbox, but can also access file storage solutions using standard protocols such as NFS, (S)FTP, WebDAV and more.

      The Encryption App can encrypt data at rest for both local and remote storage, protecting data stored on networks outside of user infrastructure. Keys can be handled by an external key management.

    • 08
      Single-sign-on

      CSG Cloud features an SSO & SAML app for easy Single-sign-on integration. SAML 2.0 is supported against OneLogin, Shibboleth, and ADFS. The app also features authentication via environment variables, including support for Kerberos, OAuth2, OpenID and many other mechanisms provided by Apache modules.

      The native SAML integration negates the need for external software like Apache modules. Native SAML is compatible with all web-servers and supports group memberships, flexible session management and app specific passwords. It can handle multiple Identity Providers and can authenticate to Samba servers with Kerberos.

      CSG Cloud features a high performance LDAP application which lets users authenticate through their LDAP credentials. Group management, quotas and sharing permissions can be managed as usual. CSG Cloud features LDAP group support, sharing, primary groups and easy configuration with auto-detection of LDAP attributes.

      CSG Cloud also supports limited LDAP/AD account management, enabling admins to create, modify or delete users in the connected user directory.

    • 10
      Private, group and public calls

      Talk makes it easy to call customers and partners in one-to-one or group-scenarios.

      Users can invite external chat participants with an URL into public rooms on the CSG Cloud server.

      The chat, which remains open even when the user leaves a call, enables participants to easily exchange messages, links and notes.

    • 12
      Easy to use

      Powerful capabilities often result in complicated user interfaces, lowering productivity and hindering quick adoption in organizations. Without limiting their abilities, CSG Cloud does not overwhelm users with unnecessary clutter. Our customers remark time and again how few support tickets it creates for their IT teams.

      Accessibility features like keyboard and screenreader navigation, WCAG 2.1 compliant contrast and a dyslexia-friendly font are available only in the leading on-premises content collaboration platform.

Powerful
Next Level
Security

CSG Cloud aligns with industry standards such as ISO 27001:2013 and related standards, guidance and security principles.

Unlike Saas products, your IT department takes back control over its data, managed under its policies and procedures. With an on-premises product you get a guarantee that data never leaves your company and remains 100% confidential.

CSG Cloud integrates in the tooling you use in your data center like logging and intrusion detection and works with existing authentication mechanisms like SAML, Kerberos and LDAP.

Powerful server and client side encryption options provide ultimate protection for sensitive documents.

CSG Cloud works with built-in monitoring and logging tools, compatible with industry standard tools like Splunk, Nagios, and OpenNMS. You also get a compliance-ready activity log of all activity for reporting and auditing purposes.

All your users have a complete and clear view on what is happening with their files:
- New or deleted files in shared folders;
- File modifications;
- Download of shared files;
- New comments or tags;
- Calendar invitations;
- Incoming calls or chat requests;
...etc.
Your legal department also has access to this information.

Your employees can enable or disable the display of specific types of events they need in their flow. Reports are visible online in a browser, in email notifications, or via an RSS feed.

The audit log for administrators is in a separate file. Optionally, you can write the complete audit log to a separate audit log file. This can be used by data loss prevention and mobile device management tools as user agent information is available along with extensive user logs, IP and date / time. Provided audit logs include information about user sessions, file handling, user management, sharing, and other activities.

Monitoring and systems intelligence tools openNMS and Splunk already have support for monitoring CSG Cloud systems and the openNMS configuration module can be easily modified for other tools like Nagios.
Administrators can set permissions on sharing and access to files using groups.

Sharing can be protected with passwords, expiration date, hide existing files, block downloads, make a video call necessary to grant access and start work, set an ACL for team folders.

Users can control and configure access rights to files or folders:
- Separate rights to read, create, edit;
- Manage publication;
- Hide download links of public content;
- Block downloading of content;
- Add watermarks;
- Limit documents to filling in forms;
- Block printing;
- Control rights of users or groups;
- Lock and hide files while you work on them;
- Track activities and get notified on changes to files or downloads;
- Locking files to prevent co-authoring conflict;
- ... and more;
Each property of each file can be configured for any number of users or groups.

Administrators control these capabilities and can set a variety of permissions by default.
The workflow tools in CSG Cloud enable administrators to limit access to data in accordance to business and legal requirements and perform automatic actions like file conversion.

Define rules for data retention, allowing regular cleanup of files or ensurances that data stays put for a set amount of time.

You can easily automate repetitive actions using flow tasks. The Workflow engine expands the capabilities of auto tagging and File Access Control, enabling administrators to start any kind of actions based on triggers. Examples would be converting document file types to PDF upon upload by members of a specified group or emailing files put in a specified folder with a given tag to a given mail address.

Apps can include flow elements like triggers or actions, and separate flow apps can be build.

Through File Access Control and automatic file tagging, your administrators can set strict data access rules for users. For example, users of a specific region or department will be restricted from accessing files or folders with a specific tag.

Tags allow you to control the automatic deletion and storage of files and folders, or prevent accidental sharing of sensitive data. This ensures legal or practical requirements for the longevity of data lifespans can be enforced. Combined with our Secure Sharing Outlook addin (and by disabling direct email attachments), File Access Control can play a crucial role in enforcing company policy on data sharing.
Encryption and a large number of advanced security protections provide the safety of your data. To support the admin, automated checks warn of security problems.

CSG Cloud uses industry-standard SSL/TLS encryption for data in transfer. Usage of Object Storage like Amazon S3 or other external storage systems can be secured through Server Side Encryption.

Data at rest in storage can be encrypted using a default grade AES-256 encryption with server-based or custom key management. Keys are not stored unencrypted on permanent storage and at rest keys are encrypted using a strong cipher.

Also optionally and on a per-folder base data can be end-to-end encrypted on the client with the server assisting in sharing and key management using a Zero-Knowledge model. The server facilitates key exchange for syncing between devices and sharing but never has access to any of the data or keys in unencrypted form.

CSG Cloud detects issues with its installation and warns when it finds unknown or modified files. Administrators can find security tips and warnings in the configuration screen.

Built in Security Scanner helps to check the security of your private cloud server.

Administrators can set a system wide recovery key for encrypted files. Encrypted files can be shared but after changing encryption settings, shares will have to be re-shared. Data can be encrypted, decrypted or re-encrypted when needed.

You can use an external key server or Hardware Security Module.

If you face a regulatory or compliance need to encrypt data at rest but do not need to actually secure this data, locally encrypting data using our built in key management may satisfy compliance requirements.
With CSG Cloud you get:

Brute Force Protection - consists of an attacker submitting many passwords or passphrases with the hope of eventually guessing a combination correctly. Our system records invalid login attempts and blocks unauthorized attempts from a single IP address or IPv6 range.

Protection against phishing attacks with password reset tokens, when critical information like user email has been changed. In this case administrators will get an information on security critical actions for password confirmation.

Cross-Site Scripting vulnerability protection - HTTP feature that allows the server to set specific restrictions on a resource when opened in a browser. Such as only allowing to load images or JavaScript from specific targets..

Same-Site cookies are a security measure supported by modern browsers that prevent CSRF vulnerabilities and protect your privacy further. CSG Cloud includes the __Host prefix to the cookie. This mitigates cookie injection vulnerabilities within potential third-party software sharing the same second level domain.

Rate Limiting - to specify how often an IP range or a user may send a request in a specific time period. This can prevent users from accessing too much data in a small attempt of time or harden bruteforce stuff further.

Password security, which highly recommends for users to not reuse a password which has been compromised on another website already.

A machine learning technology which trains a neural network on successful logins on the instance and uses it to classify login attempts. Should it detect a login classified as suspicious by the trained model, it will notify the user and store an entry in the log for the administrator, who can take action, like disabling user accounts or forcing users to pick a new password.
Managers stay in control of the data thanks to powerful File Access Control and logging capabilities.

You get an access to the corporate data silos from your existing storage systems in one seamless user interface. The complete control over the sharing of each external storage system gives you additional protection and optimization of your data.

Connect with storage silos like FTP, Windows Network Drives, SharePoint and Samba shares seamlessly through CSG Cloud.

CSG Cloud supports the NFS and local storage as well as scalable, multi-bucket capable object storage like S3 and SWIFT compatible and CIFS/Windows Shares. Nextcloud can also seamlessly access files on (s)FTP, SharePoint systems and more.

For additional server protection, you can enable data encryption on the selected external or primary storage. CSG Cloud supports external key management, master recovery password, and users changing passwords.

Get
a complete
platform

CSG Cloud will increase the productivity of your company with an intuitive interface on all types of devices and great collaboration possibilities with documents and data.

Collaboration on documents in real time, confidential conferences, commenting on edited files, general chat and audio / video calls, personal secure mail ... and many other functions you will get with our product.

CSG Cloud will replace dozens of other products for you.

  • Attractive, easy interface;
  • Integration of anti-virus scanning functionality with the anti-virus app;
  • Self-hosted so no leaking of metadata;
  • Sharing and Provisioning REST APIs;
  • Facilitates the integration of remote 3rd party apps;
  • Encrypted, peer-to-peer audio/video calls;
  • File storage with content management systems;
  • WebRTC for cross-platform support;
  • Powerful bridging capabilities with other platforms;
  • Individual and group calls & chat;
  • Mobile calls & chat with push notifications;
  • Commands to enable integration with other tools;
  • Webinars & public web meetings;
  • Streaming media;
  • Web analytics service;
  • RSS feed reader;
  • Connection to external storages;
  • URL shortening suite;
  • Media gallery and documents viewer/reader tools;
  • Managing of Cooking recipes;
  • Secure file exchange within and between organizations;
  • Collaborative editing of docx, xlsx and more;
  • File versioning, restore and retention control;
  • Commenting on files, adding notes to share links;
  • Tools for viewing documents directly from CSG Cloud;
  • Connect to Dropbox, Google Drive and Amazon S3;
  • Web analytics (Vikoristannya Matomo (software security));
  • Integration of control systems vmistom, for example Pico CMS;
  • Bookmarking service, favorites, tags etc;
  • Unlimited shares and upload folders;
  • Show/hide existing files;
  • Edit/rename without link change;
  • (Push) notifications;
  • Templated sharing emails;
  • Mobile and desktop clients;
  • Read only/write permissions;
  • File retention;
  • Comprehensive audit tracking;
  • Password protection;
  • Expiration date;
  • Encryption at rest & in transit;
  • Data remains on-premise;
  • Browser-based file editing;
  • PDF/image/doc/video thumbnail preview;
  • ...etc;
See how we can help you with control of your data.

Request
a Cloud
price

With Cyber Security Group Cloud as a Service, you can choose the type of deployment that best suits your business priorities and budget.

We have an individual approach to each client, so we always find a profitable option for your protection.

Copyright © 2020 Cyber Security Group Cloud. All Rights Reserved | Created and Supported by C.S.G Team